TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 22098d41c6620ce07cf8a0134d37302355e1e5ef / . / tests / ssl-opt.sh
blob: 61cb366c1292c99b3d697741467ffc354d3e7e21 [file] [log] [blame]
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1#!/bin/sh
2
Simon Butcher58eddef2016-05-19 23:43:11 +0100[diff] [blame]3# ssl-opt.sh
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]4#
Bence Szépkúti1e148272020-08-07 13:07:28 +0200[diff] [blame]5# Copyright The Mbed TLS Contributors
Dave Rodgman16799db2023-11-02 19:47:20 +0000[diff] [blame]6# SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
Bence Szépkútic7da1fe2020-05-26 01:54:15 +0200[diff] [blame]7#
Simon Butcher58eddef2016-05-19 23:43:11 +0100[diff] [blame]8# Purpose
9#
10# Executes tests to prove various TLS/SSL options and extensions.
11#
12# The goal is not to cover every ciphersuite/version, but instead to cover
13# specific options (max fragment length, truncated hmac, etc) or procedures
14# (session resumption from cache or ticket, renego, etc).
15#
16# The tests assume a build with default options, with exceptions expressed
17# with a dependency. The tests focus on functionality and do not consider
18# performance.
19#
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]20
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]21set -u
22
Jaeden Amero6e70eb22019-07-03 13:51:04 +0100[diff] [blame]23# Limit the size of each log to 10 GiB, in case of failures with this script
24# where it may output seemingly unlimited length error logs.
25ulimit -f 20971520
26
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]27ORIGINAL_PWD=$PWD
28if ! cd "$(dirname "$0")"; then
29 exit 125
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]30fi
31
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]32DATA_FILES_PATH=../framework/data_files
33
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]34# default values, can be overridden by the environment
Manuel Pégourié-Gonnardf7a26902014-02-27 12:25:54 +0100[diff] [blame]35: ${P_SRV:=../programs/ssl/ssl_server2}
36: ${P_CLI:=../programs/ssl/ssl_client2}
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]37: ${P_PXY:=../programs/test/udp_proxy}
Jerry Yud04fd352021-12-06 16:52:57 +0800[diff] [blame]38: ${P_QUERY:=../programs/test/query_compile_time_config}
Manuel Pégourié-Gonnardc5722462022-12-19 11:42:12 +0100[diff] [blame]39: ${OPENSSL:=openssl}
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]40: ${GNUTLS_CLI:=gnutls-cli}
41: ${GNUTLS_SERV:=gnutls-serv}
Gilles Peskined50177f2017-05-16 17:53:03 +0200[diff] [blame]42: ${PERL:=perl}
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]43
Manuel Pégourié-Gonnardc5722462022-12-19 11:42:12 +0100[diff] [blame]44# The OPENSSL variable used to be OPENSSL_CMD for historical reasons.
45# To help the migration, error out if the old variable is set,
46# but only if it has a different value than the new one.
47if [ "${OPENSSL_CMD+set}" = set ]; then
48 # the variable is set, we can now check its value
49 if [ "$OPENSSL_CMD" != "$OPENSSL" ]; then
50 echo "Please use OPENSSL instead of OPENSSL_CMD." >&2
51 exit 125
52 fi
53fi
54
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]55guess_config_name() {
Bence Szépkútibb0cfeb2021-05-28 09:42:25 +0200[diff] [blame]56 if git diff --quiet ../include/mbedtls/mbedtls_config.h 2>/dev/null; then
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]57 echo "default"
58 else
59 echo "unknown"
60 fi
61}
62: ${MBEDTLS_TEST_OUTCOME_FILE=}
63: ${MBEDTLS_TEST_CONFIGURATION:="$(guess_config_name)"}
64: ${MBEDTLS_TEST_PLATFORM:="$(uname -s | tr -c \\n0-9A-Za-z _)-$(uname -m | tr -c \\n0-9A-Za-z _)"}
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]65: ${EARLY_DATA_INPUT:="$DATA_FILES_PATH/tls13_early_data.txt"}
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]66
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]67O_SRV="$OPENSSL s_server -www -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key"
Manuel Pégourié-Gonnardc5722462022-12-19 11:42:12 +0100[diff] [blame]68O_CLI="echo 'GET / HTTP/1.0' | $OPENSSL s_client"
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]69G_SRV="$GNUTLS_SERV --x509certfile $DATA_FILES_PATH/server5.crt --x509keyfile $DATA_FILES_PATH/server5.key"
70G_CLI="echo 'GET / HTTP/1.0' | $GNUTLS_CLI --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt"
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]71
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]72# alternative versions of OpenSSL and GnuTLS (no default path)
73
Gilles Peskinef9c798c2024-04-29 17:46:24 +0200[diff] [blame]74# If $OPENSSL is at least 1.1.1, use it as OPENSSL_NEXT as well.
75if [ -z "${OPENSSL_NEXT:-}" ]; then
76 case $($OPENSSL version) in
77 OpenSSL\ 1.1.[1-9]*) OPENSSL_NEXT=$OPENSSL;;
78 OpenSSL\ [3-9]*) OPENSSL_NEXT=$OPENSSL;;
79 esac
80fi
81
82# If $GNUTLS_CLI is at least 3.7, use it as GNUTLS_NEXT_CLI as well.
83if [ -z "${GNUTLS_NEXT_CLI:-}" ]; then
84 case $($GNUTLS_CLI --version) in
85 gnutls-cli\ 3.[1-9][0-9]*) GNUTLS_NEXT_CLI=$GNUTLS_CLI;;
86 gnutls-cli\ 3.[7-9].*) GNUTLS_NEXT_CLI=$GNUTLS_CLI;;
87 gnutls-cli\ [4-9]*) GNUTLS_NEXT_CLI=$GNUTLS_CLI;;
88 esac
89fi
90
91# If $GNUTLS_SERV is at least 3.7, use it as GNUTLS_NEXT_SERV as well.
92if [ -z "${GNUTLS_NEXT_SERV:-}" ]; then
93 case $($GNUTLS_SERV --version) in
94 gnutls-cli\ 3.[1-9][0-9]*) GNUTLS_NEXT_SERV=$GNUTLS_SERV;;
95 gnutls-cli\ 3.[7-9].*) GNUTLS_NEXT_SERV=$GNUTLS_SERV;;
96 gnutls-cli\ [4-9]*) GNUTLS_NEXT_SERV=$GNUTLS_SERV;;
97 esac
98fi
99
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]100if [ -n "${OPENSSL_NEXT:-}" ]; then
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]101 O_NEXT_SRV="$OPENSSL_NEXT s_server -www -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key"
102 O_NEXT_SRV_EARLY_DATA="$OPENSSL_NEXT s_server -early_data -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key"
Jerry Yu305bfc32021-11-24 16:04:47 +0800[diff] [blame]103 O_NEXT_SRV_NO_CERT="$OPENSSL_NEXT s_server -www "
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]104 O_NEXT_CLI="echo 'GET / HTTP/1.0' | $OPENSSL_NEXT s_client -CAfile $DATA_FILES_PATH/test-ca_cat12.crt"
XiaokangQiand5d5b602022-05-23 09:16:20 +0000[diff] [blame]105 O_NEXT_CLI_NO_CERT="echo 'GET / HTTP/1.0' | $OPENSSL_NEXT s_client"
Minos Galanakis27988882025-03-11 17:29:33 +0000[diff] [blame]106 O_NEXT_CLI_RENEGOTIATE="echo 'R' | $OPENSSL_NEXT s_client -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key"
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]107else
108 O_NEXT_SRV=false
Jerry Yu305bfc32021-11-24 16:04:47 +0800[diff] [blame]109 O_NEXT_SRV_NO_CERT=false
Xiaokang Qianb0c32d82022-11-02 10:51:13 +0000[diff] [blame]110 O_NEXT_SRV_EARLY_DATA=false
XiaokangQianb1847a22022-06-08 07:49:31 +0000[diff] [blame]111 O_NEXT_CLI_NO_CERT=false
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]112 O_NEXT_CLI=false
Minos Galanakisc4595a42025-02-12 18:23:09 +0000[diff] [blame]113 O_NEXT_CLI_RENEGOTIATE=false
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]114fi
115
Hanno Becker58e9dc32018-08-17 15:53:21 +0100[diff] [blame]116if [ -n "${GNUTLS_NEXT_SERV:-}" ]; then
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]117 G_NEXT_SRV="$GNUTLS_NEXT_SERV --x509certfile $DATA_FILES_PATH/server5.crt --x509keyfile $DATA_FILES_PATH/server5.key"
Jerry Yu305bfc32021-11-24 16:04:47 +0800[diff] [blame]118 G_NEXT_SRV_NO_CERT="$GNUTLS_NEXT_SERV"
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]119else
120 G_NEXT_SRV=false
Jerry Yu305bfc32021-11-24 16:04:47 +0800[diff] [blame]121 G_NEXT_SRV_NO_CERT=false
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]122fi
123
Hanno Becker58e9dc32018-08-17 15:53:21 +0100[diff] [blame]124if [ -n "${GNUTLS_NEXT_CLI:-}" ]; then
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]125 G_NEXT_CLI="echo 'GET / HTTP/1.0' | $GNUTLS_NEXT_CLI --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt"
XiaokangQiand5d5b602022-05-23 09:16:20 +0000[diff] [blame]126 G_NEXT_CLI_NO_CERT="echo 'GET / HTTP/1.0' | $GNUTLS_NEXT_CLI"
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]127else
128 G_NEXT_CLI=false
XiaokangQianfb1a3fe2022-06-09 06:37:33 +0000[diff] [blame]129 G_NEXT_CLI_NO_CERT=false
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]130fi
131
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]132TESTS=0
133FAILS=0
Manuel Pégourié-Gonnard6f4fbbb2014-08-14 14:31:29 +0200[diff] [blame]134SKIPS=0
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]135
Bence Szépkútibb0cfeb2021-05-28 09:42:25 +0200[diff] [blame]136CONFIG_H='../include/mbedtls/mbedtls_config.h'
Manuel Pégourié-Gonnard83d8c732014-04-07 13:24:21 +0200[diff] [blame]137
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]138MEMCHECK=0
Manuel Pégourié-Gonnard417d46c2014-03-13 19:17:53 +0100[diff] [blame]139FILTER='.*'
Manuel Pégourié-Gonnard6f4fbbb2014-08-14 14:31:29 +0200[diff] [blame]140EXCLUDE='^$'
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]141
Paul Bakkere20310a2016-05-10 11:18:17 +0100[diff] [blame]142SHOW_TEST_NUMBER=0
Tomás González24552ff2023-08-17 15:10:03 +0100[diff] [blame]143LIST_TESTS=0
Paul Bakkerb7584a52016-05-10 10:50:43 +0100[diff] [blame]144RUN_TEST_NUMBER=''
Jerry Yu50d07bd2023-11-06 10:49:01 +0800[diff] [blame]145RUN_TEST_SUITE=''
Paul Bakkerb7584a52016-05-10 10:50:43 +0100[diff] [blame]146
Gilles Peskinec75048c2024-05-17 11:55:15 +0200[diff] [blame]147MIN_TESTS=1
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]148PRESERVE_LOGS=0
149
Gilles Peskinef93c7d32017-04-14 17:55:28 +0200[diff] [blame]150# Pick a "unique" server port in the range 10000-19999, and a proxy
151# port which is this plus 10000. Each port number may be independently
152# overridden by a command line option.
153SRV_PORT=$(($$ % 10000 + 10000))
154PXY_PORT=$((SRV_PORT + 10000))
155
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]156print_usage() {
157 echo "Usage: $0 [options]"
Manuel Pégourié-Gonnardf46f1282014-12-11 11:51:28 +0100[diff] [blame]158 printf " -h|--help\tPrint this help.\n"
159 printf " -m|--memcheck\tCheck memory leaks and errors.\n"
Gilles Peskine9fa4ed62020-08-26 22:35:46 +0200[diff] [blame]160 printf " -f|--filter\tOnly matching tests are executed (substring or BRE)\n"
161 printf " -e|--exclude\tMatching tests are excluded (substring or BRE)\n"
Paul Bakkerb7584a52016-05-10 10:50:43 +0100[diff] [blame]162 printf " -n|--number\tExecute only numbered test (comma-separated, e.g. '245,256')\n"
Paul Bakkere20310a2016-05-10 11:18:17 +0100[diff] [blame]163 printf " -s|--show-numbers\tShow test numbers in front of test names\n"
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]164 printf " -p|--preserve-logs\tPreserve logs of successful tests as well\n"
Tomás González12787c92023-09-04 10:26:00 +0100[diff] [blame]165 printf " --list-test-cases\tList all potential test cases (No Execution)\n"
Gilles Peskinec75048c2024-05-17 11:55:15 +0200[diff] [blame]166 printf " --min \tMinimum number of non-skipped tests (default 1)\n"
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]167 printf " --outcome-file\tFile where test outcomes are written\n"
168 printf " \t(default: \$MBEDTLS_TEST_OUTCOME_FILE, none if empty)\n"
169 printf " --port \tTCP/UDP port (default: randomish 1xxxx)\n"
Gilles Peskinef93c7d32017-04-14 17:55:28 +0200[diff] [blame]170 printf " --proxy-port\tTCP/UDP proxy port (default: randomish 2xxxx)\n"
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]171 printf " --seed \tInteger seed value to use for this test run\n"
Jerry Yu50d07bd2023-11-06 10:49:01 +0800[diff] [blame]172 printf " --test-suite\tOnly matching test suites are executed\n"
173 printf " \t(comma-separated, e.g. 'ssl-opt,tls13-compat')\n\n"
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]174}
175
176get_options() {
177 while [ $# -gt 0 ]; do
178 case "$1" in
Manuel Pégourié-Gonnard417d46c2014-03-13 19:17:53 +0100[diff] [blame]179 -f|--filter)
180 shift; FILTER=$1
181 ;;
182 -e|--exclude)
183 shift; EXCLUDE=$1
184 ;;
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]185 -m|--memcheck)
186 MEMCHECK=1
187 ;;
Paul Bakkerb7584a52016-05-10 10:50:43 +0100[diff] [blame]188 -n|--number)
189 shift; RUN_TEST_NUMBER=$1
190 ;;
Paul Bakkere20310a2016-05-10 11:18:17 +0100[diff] [blame]191 -s|--show-numbers)
192 SHOW_TEST_NUMBER=1
193 ;;
Tomás González4a86da22023-09-01 17:41:16 +0100[diff] [blame]194 -l|--list-test-cases)
Tomás González24552ff2023-08-17 15:10:03 +0100[diff] [blame]195 LIST_TESTS=1
196 ;;
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]197 -p|--preserve-logs)
198 PRESERVE_LOGS=1
199 ;;
Gilles Peskinec75048c2024-05-17 11:55:15 +0200[diff] [blame]200 --min)
201 shift; MIN_TESTS=$1
202 ;;
Yanray Wang5b33f642023-02-28 11:56:59 +0800[diff] [blame]203 --outcome-file)
204 shift; MBEDTLS_TEST_OUTCOME_FILE=$1
205 ;;
Gilles Peskinef93c7d32017-04-14 17:55:28 +0200[diff] [blame]206 --port)
207 shift; SRV_PORT=$1
208 ;;
209 --proxy-port)
210 shift; PXY_PORT=$1
211 ;;
Andres AGf04f54d2016-10-10 15:46:20 +0100[diff] [blame]212 --seed)
213 shift; SEED="$1"
214 ;;
Jerry Yu50d07bd2023-11-06 10:49:01 +0800[diff] [blame]215 --test-suite)
216 shift; RUN_TEST_SUITE="$1"
217 ;;
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]218 -h|--help)
219 print_usage
220 exit 0
221 ;;
222 *)
Paul Bakker1ebc0c52014-05-22 15:47:58 +0200[diff] [blame]223 echo "Unknown argument: '$1'"
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]224 print_usage
225 exit 1
226 ;;
227 esac
228 shift
229 done
230}
231
Tomás González0e8a08a2023-08-23 15:29:57 +0100[diff] [blame]232get_options "$@"
233
Bence Szépkútibb0cfeb2021-05-28 09:42:25 +0200[diff] [blame]234# Read boolean configuration options from mbedtls_config.h for easy and quick
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]235# testing. Skip non-boolean options (with something other than spaces
236# and a comment after "#define SYMBOL"). The variable contains a
237# space-separated list of symbols.
Tomás Gonzálezf162b4f2023-08-23 15:31:12 +0100[diff] [blame]238if [ "$LIST_TESTS" -eq 0 ];then
239 CONFIGS_ENABLED=" $(echo `$P_QUERY -l` )"
240else
Tomás Gonzálezbe2c66e2023-09-01 10:34:49 +0100[diff] [blame]241 P_QUERY=":"
Tomás Gonzálezf162b4f2023-08-23 15:31:12 +0100[diff] [blame]242 CONFIGS_ENABLED=""
243fi
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]244# Skip next test; use this macro to skip tests which are legitimate
245# in theory and expected to be re-introduced at some point, but
246# aren't expected to succeed at the moment due to problems outside
247# our control (such as bugs in other TLS implementations).
248skip_next_test() {
249 SKIP_NEXT="YES"
250}
251
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]252# Check if the required configuration ($1) is enabled
253is_config_enabled()
254{
255 case $CONFIGS_ENABLED in
256 *" $1"[\ =]*) return 0;;
257 *) return 1;;
258 esac
259}
260
Bence Szépkútibb0cfeb2021-05-28 09:42:25 +0200[diff] [blame]261# skip next test if the flag is not enabled in mbedtls_config.h
Manuel Pégourié-Gonnard988209f2015-03-24 10:43:55 +0100[diff] [blame]262requires_config_enabled() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]263 case $CONFIGS_ENABLED in
Jerry Yu2e8b0012021-12-10 20:29:02 +0800[diff] [blame]264 *" $1"[\ =]*) :;;
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]265 *) SKIP_NEXT="YES";;
266 esac
Manuel Pégourié-Gonnard988209f2015-03-24 10:43:55 +0100[diff] [blame]267}
268
Bence Szépkútibb0cfeb2021-05-28 09:42:25 +0200[diff] [blame]269# skip next test if the flag is enabled in mbedtls_config.h
Manuel Pégourié-Gonnardaf63c212017-06-08 17:51:08 +0200[diff] [blame]270requires_config_disabled() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]271 case $CONFIGS_ENABLED in
Jerry Yu2e8b0012021-12-10 20:29:02 +0800[diff] [blame]272 *" $1"[\ =]*) SKIP_NEXT="YES";;
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]273 esac
Manuel Pégourié-Gonnardaf63c212017-06-08 17:51:08 +0200[diff] [blame]274}
275
Jerry Yu2fcb0562022-07-27 17:30:49 +0800[diff] [blame]276requires_all_configs_enabled() {
Gilles Peskine0bc57292024-09-06 14:43:17 +0200[diff] [blame]277 for x in "$@"; do
278 if ! is_config_enabled "$x"; then
279 SKIP_NEXT="YES"
280 return
281 fi
282 done
Jerry Yu2fcb0562022-07-27 17:30:49 +0800[diff] [blame]283}
284
285requires_all_configs_disabled() {
Gilles Peskine0bc57292024-09-06 14:43:17 +0200[diff] [blame]286 for x in "$@"; do
287 if is_config_enabled "$x"; then
288 SKIP_NEXT="YES"
289 return
290 fi
291 done
Jerry Yu2fcb0562022-07-27 17:30:49 +0800[diff] [blame]292}
293
294requires_any_configs_enabled() {
Gilles Peskine0bc57292024-09-06 14:43:17 +0200[diff] [blame]295 for x in "$@"; do
296 if is_config_enabled "$x"; then
297 return
298 fi
299 done
300 SKIP_NEXT="YES"
Jerry Yu2fcb0562022-07-27 17:30:49 +0800[diff] [blame]301}
302
303requires_any_configs_disabled() {
Gilles Peskine0bc57292024-09-06 14:43:17 +0200[diff] [blame]304 for x in "$@"; do
305 if ! is_config_enabled "$x"; then
306 return
307 fi
308 done
309 SKIP_NEXT="YES"
Jerry Yu2fcb0562022-07-27 17:30:49 +0800[diff] [blame]310}
311
Ronald Cron454eb912022-10-21 08:56:04 +0200[diff] [blame]312TLS1_2_KEY_EXCHANGES_WITH_CERT="MBEDTLS_KEY_EXCHANGE_RSA_ENABLED \
Ronald Cronbc5adf42022-10-04 11:06:14 +0200[diff] [blame]313 MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED \
314 MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
315 MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED \
316 MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
317 MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED \
318 MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED"
319
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]320TLS1_2_KEY_EXCHANGES_WITH_ECDSA_CERT="MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED \
321 MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED"
322
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]323TLS1_2_KEY_EXCHANGES_WITH_CERT_WO_ECDH="MBEDTLS_KEY_EXCHANGE_RSA_ENABLED \
324 MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED \
325 MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
326 MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED \
327 MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED"
328
Gilles Peskine0a9f9d62024-09-06 15:38:47 +0200[diff] [blame]329requires_certificate_authentication () {
Gilles Peskinecfbaffd2024-09-10 12:24:23 +0200[diff] [blame]330 if is_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]331 then
Gilles Peskinecfbaffd2024-09-10 12:24:23 +0200[diff] [blame]332 # TLS 1.3 is negotiated by default, so check whether it supports
333 # certificate-based authentication.
334 requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
335 else # Only TLS 1.2 is enabled.
Valerio Settie7f896d2023-03-13 13:55:28 +0100[diff] [blame]336 requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]337 fi
Ronald Cronbc5adf42022-10-04 11:06:14 +0200[diff] [blame]338}
339
Hanno Becker7c48dd12018-08-28 16:09:22 +0100[diff] [blame]340get_config_value_or_default() {
Andres Amaya Garcia3169dc02018-10-16 21:29:07 +0100[diff] [blame]341 # This function uses the query_config command line option to query the
342 # required Mbed TLS compile time configuration from the ssl_server2
343 # program. The command will always return a success value if the
344 # configuration is defined and the value will be printed to stdout.
345 #
346 # Note that if the configuration is not defined or is defined to nothing,
347 # the output of this function will be an empty string.
Tomás González06956a12023-08-23 15:46:20 +0100[diff] [blame]348 if [ "$LIST_TESTS" -eq 0 ];then
349 ${P_SRV} "query_config=${1}"
350 else
351 echo "1"
352 fi
353
Hanno Becker7c48dd12018-08-28 16:09:22 +0100[diff] [blame]354}
355
356requires_config_value_at_least() {
Andres Amaya Garcia3169dc02018-10-16 21:29:07 +0100[diff] [blame]357 VAL="$( get_config_value_or_default "$1" )"
358 if [ -z "$VAL" ]; then
359 # Should never happen
360 echo "Mbed TLS configuration $1 is not defined"
361 exit 1
362 elif [ "$VAL" -lt "$2" ]; then
Hanno Becker5cd017f2018-08-24 14:40:12 +0100[diff] [blame]363 SKIP_NEXT="YES"
364 fi
365}
366
367requires_config_value_at_most() {
Hanno Becker7c48dd12018-08-28 16:09:22 +0100[diff] [blame]368 VAL=$( get_config_value_or_default "$1" )
Andres Amaya Garcia3169dc02018-10-16 21:29:07 +0100[diff] [blame]369 if [ -z "$VAL" ]; then
370 # Should never happen
371 echo "Mbed TLS configuration $1 is not defined"
372 exit 1
373 elif [ "$VAL" -gt "$2" ]; then
Hanno Becker5cd017f2018-08-24 14:40:12 +0100[diff] [blame]374 SKIP_NEXT="YES"
375 fi
376}
377
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]378requires_config_value_equals() {
379 VAL=$( get_config_value_or_default "$1" )
380 if [ -z "$VAL" ]; then
381 # Should never happen
382 echo "Mbed TLS configuration $1 is not defined"
383 exit 1
384 elif [ "$VAL" -ne "$2" ]; then
385 SKIP_NEXT="YES"
386 fi
387}
388
Gilles Peskinec9126732022-04-08 19:33:07 +0200[diff] [blame]389# Require Mbed TLS to support the given protocol version.
390#
391# Inputs:
392# * $1: protocol version in mbedtls syntax (argument to force_version=)
393requires_protocol_version() {
394 # Support for DTLS is detected separately in detect_dtls().
395 case "$1" in
396 tls12|dtls12) requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2;;
397 tls13|dtls13) requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3;;
398 *) echo "Unknown required protocol version: $1"; exit 1;;
399 esac
400}
401
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]402# Space-separated list of ciphersuites supported by this build of
403# Mbed TLS.
Ronald Cron5b73de82023-11-28 15:49:25 +0100[diff] [blame]404P_CIPHERSUITES=""
405if [ "$LIST_TESTS" -eq 0 ]; then
406 P_CIPHERSUITES=" $($P_CLI help_ciphersuites 2>/dev/null |
407 grep 'TLS-\|TLS1-3' |
408 tr -s ' \n' ' ')"
409
410 if [ -z "${P_CIPHERSUITES# }" ]; then
411 echo >&2 "$0: fatal error: no cipher suites found!"
412 exit 125
413 fi
414fi
415
Hanno Becker9d76d562018-11-16 17:27:29 +0000[diff] [blame]416requires_ciphersuite_enabled() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]417 case $P_CIPHERSUITES in
418 *" $1 "*) :;;
419 *) SKIP_NEXT="YES";;
420 esac
Hanno Becker9d76d562018-11-16 17:27:29 +0000[diff] [blame]421}
422
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]423requires_cipher_enabled() {
424 KEY_TYPE=$1
425 MODE=${2:-}
426 if is_config_enabled MBEDTLS_USE_PSA_CRYPTO; then
427 case "$KEY_TYPE" in
428 CHACHA20)
429 requires_config_enabled PSA_WANT_ALG_CHACHA20_POLY1305
430 requires_config_enabled PSA_WANT_KEY_TYPE_CHACHA20
431 ;;
432 *)
433 requires_config_enabled PSA_WANT_ALG_${MODE}
434 requires_config_enabled PSA_WANT_KEY_TYPE_${KEY_TYPE}
435 ;;
436 esac
437 else
438 case "$KEY_TYPE" in
439 CHACHA20)
440 requires_config_enabled MBEDTLS_CHACHA20_C
441 requires_config_enabled MBEDTLS_CHACHAPOLY_C
442 ;;
443 *)
444 requires_config_enabled MBEDTLS_${MODE}_C
445 requires_config_enabled MBEDTLS_${KEY_TYPE}_C
446 ;;
447 esac
448 fi
449}
450
Valerio Setti1af76d12023-02-23 15:55:10 +0100[diff] [blame]451# Automatically detect required features based on command line parameters.
452# Parameters are:
453# - $1 = command line (call to a TLS client or server program)
454# - $2 = client/server
455# - $3 = TLS version (TLS12 or TLS13)
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]456# - $4 = Use an external tool without ECDH support
457# - $5 = run test options
Gilles Peskineb898b3d2022-04-08 19:26:26 +0200[diff] [blame]458detect_required_features() {
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]459 CMD_LINE=$1
460 ROLE=$2
461 TLS_VERSION=$3
462 EXT_WO_ECDH=$4
463 TEST_OPTIONS=${5:-}
464
465 case "$CMD_LINE" in
Gilles Peskinec9126732022-04-08 19:33:07 +0200[diff] [blame]466 *\ force_version=*)
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]467 tmp="${CMD_LINE##*\ force_version=}"
Gilles Peskinec9126732022-04-08 19:33:07 +0200[diff] [blame]468 tmp="${tmp%%[!-0-9A-Z_a-z]*}"
469 requires_protocol_version "$tmp";;
Gilles Peskine0d721652020-06-26 23:35:53 +0200[diff] [blame]470 esac
Gilles Peskine0d721652020-06-26 23:35:53 +0200[diff] [blame]471
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]472 case "$CMD_LINE" in
Gilles Peskineb898b3d2022-04-08 19:26:26 +0200[diff] [blame]473 *\ force_ciphersuite=*)
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]474 tmp="${CMD_LINE##*\ force_ciphersuite=}"
Gilles Peskineb898b3d2022-04-08 19:26:26 +0200[diff] [blame]475 tmp="${tmp%%[!-0-9A-Z_a-z]*}"
476 requires_ciphersuite_enabled "$tmp";;
Gilles Peskine0d721652020-06-26 23:35:53 +0200[diff] [blame]477 esac
Gilles Peskine0d721652020-06-26 23:35:53 +0200[diff] [blame]478
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]479 case " $CMD_LINE " in
Gilles Peskine740b7342022-04-08 19:29:27 +0200[diff] [blame]480 *[-_\ =]tickets=[^0]*)
481 requires_config_enabled MBEDTLS_SSL_TICKET_C;;
482 esac
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]483 case " $CMD_LINE " in
Gilles Peskine740b7342022-04-08 19:29:27 +0200[diff] [blame]484 *[-_\ =]alpn=*)
485 requires_config_enabled MBEDTLS_SSL_ALPN;;
486 esac
487
Gilles Peskine6eff90f2024-09-06 15:34:59 +0200[diff] [blame]488 case " $CMD_LINE " in
489 *\ auth_mode=*|*[-_\ =]crt[_=]*)
Gilles Peskined57212e2024-09-10 12:06:33 +0200[diff] [blame]490 # The test case involves certificates (crt), or a relevant
491 # aspect of it is the (certificate-based) authentication mode.
Gilles Peskine6eff90f2024-09-06 15:34:59 +0200[diff] [blame]492 requires_certificate_authentication;;
493 esac
494
Gilles Peskinee6b82502024-09-04 16:06:10 +0200[diff] [blame]495 case " $CMD_LINE " in
Gilles Peskine48e4ff92025-02-13 21:23:22 +0100[diff] [blame]496 *\ ca_callback=1\ *)
497 requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK;;
498 esac
499
500 case " $CMD_LINE " in
Gilles Peskinef8b373e2024-09-04 16:07:56 +0200[diff] [blame]501 *"programs/ssl/dtls_client "*|\
Gilles Peskinee6b82502024-09-04 16:06:10 +0200[diff] [blame]502 *"programs/ssl/ssl_client1 "*)
503 requires_config_enabled MBEDTLS_CTR_DRBG_C
504 requires_config_enabled MBEDTLS_ENTROPY_C
505 requires_config_enabled MBEDTLS_PEM_PARSE_C
506 requires_config_enabled MBEDTLS_SSL_CLI_C
507 requires_certificate_authentication
508 ;;
Gilles Peskine9d104e92024-09-04 16:51:50 +0200[diff] [blame]509 *"programs/ssl/dtls_server "*|\
Gilles Peskine2a0af352024-09-04 17:47:14 +0200[diff] [blame]510 *"programs/ssl/ssl_fork_server "*|\
Gilles Peskinefab60992024-09-04 16:31:06 +0200[diff] [blame]511 *"programs/ssl/ssl_pthread_server "*|\
Gilles Peskine37c37492024-09-04 16:30:32 +0200[diff] [blame]512 *"programs/ssl/ssl_server "*)
513 requires_config_enabled MBEDTLS_CTR_DRBG_C
514 requires_config_enabled MBEDTLS_ENTROPY_C
515 requires_config_enabled MBEDTLS_PEM_PARSE_C
516 requires_config_enabled MBEDTLS_SSL_SRV_C
517 requires_certificate_authentication
Gilles Peskine5bf54ca2024-09-13 23:08:48 +0200[diff] [blame]518 # The actual minimum depends on the configuration since it's
519 # mostly about the certificate size.
520 # In config-suite-b.h, for the test certificates (server5.crt),
521 # 1024 is not enough.
522 requires_config_value_at_least MBEDTLS_SSL_OUT_CONTENT_LEN 2000
Gilles Peskine37c37492024-09-04 16:30:32 +0200[diff] [blame]523 ;;
Gilles Peskinee6b82502024-09-04 16:06:10 +0200[diff] [blame]524 esac
525
Gilles Peskinefab60992024-09-04 16:31:06 +0200[diff] [blame]526 case " $CMD_LINE " in
527 *"programs/ssl/ssl_pthread_server "*)
528 requires_config_enabled MBEDTLS_THREADING_PTHREAD;;
529 esac
530
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]531 case "$CMD_LINE" in
Gilles Peskine5c766dc2024-09-06 15:35:58 +0200[diff] [blame]532 *[-_\ =]psk*|*[-_\ =]PSK*) :;; # No certificate requirement with PSK
Gilles Peskine1bc28fe2024-04-26 21:28:49 +0200[diff] [blame]533 */server5*|\
534 */server7*|\
535 */dir-maxpath*)
Gilles Peskine6eff90f2024-09-06 15:34:59 +0200[diff] [blame]536 requires_certificate_authentication
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]537 if [ "$TLS_VERSION" = "TLS13" ]; then
Valerio Setti1af76d12023-02-23 15:55:10 +0100[diff] [blame]538 # In case of TLS13 the support for ECDSA is enough
539 requires_pk_alg "ECDSA"
540 else
541 # For TLS12 requirements are different between server and client
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]542 if [ "$ROLE" = "server" ]; then
Valerio Setti194e2bd2023-03-02 17:18:10 +0100[diff] [blame]543 # If the server uses "server5*" certificates, then an ECDSA based
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]544 # key exchange is required. However gnutls also does not
545 # support ECDH, so this limit the choice to ECDHE-ECDSA
546 if [ "$EXT_WO_ECDH" = "yes" ]; then
547 requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
548 else
549 requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_ECDSA_CERT
550 fi
551 elif [ "$ROLE" = "client" ]; then
552 # On the client side it is enough to have any certificate
553 # based authentication together with support for ECDSA.
554 # Of course the GnuTLS limitation mentioned above applies
555 # also here.
556 if [ "$EXT_WO_ECDH" = "yes" ]; then
557 requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT_WO_ECDH
558 else
559 requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
560 fi
Valerio Setti1af76d12023-02-23 15:55:10 +0100[diff] [blame]561 requires_pk_alg "ECDSA"
562 fi
563 fi
564 ;;
565 esac
566
Valerio Setti4f577f32023-07-31 18:58:25 +0200[diff] [blame]567 case "$CMD_LINE" in
Gilles Peskine5c766dc2024-09-06 15:35:58 +0200[diff] [blame]568 *[-_\ =]psk*|*[-_\ =]PSK*) :;; # No certificate requirement with PSK
Gilles Peskine121a7bf2024-04-29 16:03:02 +0200[diff] [blame]569 */server1*|\
Gilles Peskine1bc28fe2024-04-26 21:28:49 +0200[diff] [blame]570 */server2*|\
571 */server7*)
Gilles Peskine6eff90f2024-09-06 15:34:59 +0200[diff] [blame]572 requires_certificate_authentication
Gilles Peskine121a7bf2024-04-29 16:03:02 +0200[diff] [blame]573 # Certificates with an RSA key. The algorithm requirement is
574 # some subset of {PKCS#1v1.5 encryption, PKCS#1v1.5 signature,
575 # PSS signature}. We can't easily tell which subset works, and
576 # we aren't currently running ssl-opt.sh in configurations
577 # where partial RSA support is a problem, so generically, we
578 # just require RSA and it works out for our tests so far.
Valerio Setti4f577f32023-07-31 18:58:25 +0200[diff] [blame]579 requires_config_enabled "MBEDTLS_RSA_C"
580 esac
581
Gilles Peskineb898b3d2022-04-08 19:26:26 +0200[diff] [blame]582 unset tmp
Gilles Peskine0d721652020-06-26 23:35:53 +0200[diff] [blame]583}
584
Gilles Peskine6e86e542022-02-25 19:52:52 +0100[diff] [blame]585adapt_cmd_for_psk () {
586 case "$2" in
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]587 *openssl*s_server*) s='-psk 73776f726466697368 -nocert';;
588 *openssl*) s='-psk 73776f726466697368';;
Gilles Peskine9cd58482024-09-06 15:27:57 +0200[diff] [blame]589 *gnutls-cli*) s='--pskusername=Client_identity --pskkey=73776f726466697368';;
590 *gnutls-serv*) s='--pskpasswd=../framework/data_files/simplepass.psk';;
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]591 *) s='psk=73776f726466697368';;
Gilles Peskine6e86e542022-02-25 19:52:52 +0100[diff] [blame]592 esac
593 eval $1='"$2 $s"'
594 unset s
595}
596
597# maybe_adapt_for_psk [RUN_TEST_OPTION...]
598# If running in a PSK-only build, maybe adapt the test to use a pre-shared key.
599#
600# If not running in a PSK-only build, do nothing.
601# If the test looks like it doesn't use a pre-shared key but can run with a
602# pre-shared key, pass a pre-shared key. If the test looks like it can't run
603# with a pre-shared key, skip it. If the test looks like it's already using
604# a pre-shared key, do nothing.
605#
Gilles Peskine59601d72022-04-05 22:00:17 +0200[diff] [blame]606# This code does not consider builds with ECDHE-PSK or RSA-PSK.
Gilles Peskine6e86e542022-02-25 19:52:52 +0100[diff] [blame]607#
608# Inputs:
609# * $CLI_CMD, $SRV_CMD, $PXY_CMD: client/server/proxy commands.
610# * $PSK_ONLY: YES if running in a PSK-only build (no asymmetric key exchanges).
611# * "$@": options passed to run_test.
612#
613# Outputs:
614# * $CLI_CMD, $SRV_CMD: may be modified to add PSK-relevant arguments.
615# * $SKIP_NEXT: set to YES if the test can't run with PSK.
616maybe_adapt_for_psk() {
617 if [ "$PSK_ONLY" != "YES" ]; then
618 return
619 fi
620 if [ "$SKIP_NEXT" = "YES" ]; then
621 return
622 fi
623 case "$CLI_CMD $SRV_CMD" in
624 *[-_\ =]psk*|*[-_\ =]PSK*)
625 return;;
626 *force_ciphersuite*)
627 # The test case forces a non-PSK cipher suite. In some cases, a
628 # PSK cipher suite could be substituted, but we're not ready for
629 # that yet.
630 SKIP_NEXT="YES"
631 return;;
632 *\ auth_mode=*|*[-_\ =]crt[_=]*)
633 # The test case involves certificates. PSK won't do.
634 SKIP_NEXT="YES"
635 return;;
636 esac
637 adapt_cmd_for_psk CLI_CMD "$CLI_CMD"
638 adapt_cmd_for_psk SRV_CMD "$SRV_CMD"
639}
640
Gilles Peskined98b3632024-09-06 19:08:41 +0200[diff] [blame]641# PSK_PRESENT="YES" if at least one protocol versions supports at least
642# one PSK key exchange mode.
Gilles Peskinebbdc1a32024-09-06 15:38:20 +0200[diff] [blame]643PSK_PRESENT="NO"
Gilles Peskined98b3632024-09-06 19:08:41 +0200[diff] [blame]644# PSK_ONLY="YES" if all the available key exchange modes are PSK-based
645# (pure-PSK or PSK-ephemeral, possibly both).
Gilles Peskinebbdc1a32024-09-06 15:38:20 +0200[diff] [blame]646PSK_ONLY=""
647for c in $CONFIGS_ENABLED; do
648 case $c in
649 MBEDTLS_KEY_EXCHANGE_PSK_ENABLED) PSK_PRESENT="YES";;
Gilles Peskine19c60d22024-09-09 11:24:17 +0200[diff] [blame]650 MBEDTLS_KEY_EXCHANGE_*_PSK_ENABLED) PSK_PRESENT="YES";;
Gilles Peskinebbdc1a32024-09-06 15:38:20 +0200[diff] [blame]651 MBEDTLS_KEY_EXCHANGE_*_ENABLED) PSK_ONLY="NO";;
652 MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED) PSK_PRESENT="YES";;
Gilles Peskined98b3632024-09-06 19:08:41 +0200[diff] [blame]653 MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_*_ENABLED) PSK_PRESENT="YES";;
Gilles Peskinebbdc1a32024-09-06 15:38:20 +0200[diff] [blame]654 MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_*_ENABLED) PSK_ONLY="NO";;
655 esac
656done
Gilles Peskine5838a642024-09-09 10:57:01 +0200[diff] [blame]657# At this stage, $PSK_ONLY is empty if we haven't detected a non-PSK
658# key exchange, i.e. if we're in a PSK-only build or a build with no
659# key exchanges at all. We avoid triggering PSK-only adaptation code in
Gilles Peskined57212e2024-09-10 12:06:33 +0200[diff] [blame]660# the edge case of no key exchanges.
Gilles Peskinebbdc1a32024-09-06 15:38:20 +0200[diff] [blame]661: ${PSK_ONLY:=$PSK_PRESENT}
662unset c
Gilles Peskine6e86e542022-02-25 19:52:52 +0100[diff] [blame]663
Sam Berry06b91be2024-06-19 11:43:03 +0100[diff] [blame]664HAS_ALG_MD5="NO"
Andrzej Kurek9c061a22022-09-05 10:51:19 -0400[diff] [blame]665HAS_ALG_SHA_1="NO"
666HAS_ALG_SHA_224="NO"
667HAS_ALG_SHA_256="NO"
668HAS_ALG_SHA_384="NO"
669HAS_ALG_SHA_512="NO"
670
671check_for_hash_alg()
672{
673 CURR_ALG="INVALID";
674 USE_PSA="NO"
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]675 if is_config_enabled "MBEDTLS_USE_PSA_CRYPTO"; then
676 USE_PSA="YES";
677 fi
Andrzej Kurek9c061a22022-09-05 10:51:19 -0400[diff] [blame]678 if [ $USE_PSA = "YES" ]; then
679 CURR_ALG=PSA_WANT_ALG_${1}
680 else
681 CURR_ALG=MBEDTLS_${1}_C
682 # Remove the second underscore to match MBEDTLS_* naming convention
Sam Berry06b91be2024-06-19 11:43:03 +0100[diff] [blame]683 # MD5 is an exception to this convention
684 if [ "${1}" != "MD5" ]; then
685 CURR_ALG=$(echo "$CURR_ALG" | sed 's/_//2')
686 fi
Andrzej Kurek9c061a22022-09-05 10:51:19 -0400[diff] [blame]687 fi
688
689 case $CONFIGS_ENABLED in
690 *" $CURR_ALG"[\ =]*)
691 return 0
692 ;;
693 *) :;;
694 esac
695 return 1
696}
697
698populate_enabled_hash_algs()
699{
Sam Berry06b91be2024-06-19 11:43:03 +0100[diff] [blame]700 for hash_alg in SHA_1 SHA_224 SHA_256 SHA_384 SHA_512 MD5; do
Andrzej Kurek9c061a22022-09-05 10:51:19 -0400[diff] [blame]701 if check_for_hash_alg "$hash_alg"; then
702 hash_alg_variable=HAS_ALG_${hash_alg}
703 eval ${hash_alg_variable}=YES
704 fi
Valerio Settie7f896d2023-03-13 13:55:28 +0100[diff] [blame]705 done
Andrzej Kurek9c061a22022-09-05 10:51:19 -0400[diff] [blame]706}
707
708# skip next test if the given hash alg is not supported
709requires_hash_alg() {
710 HASH_DEFINE="Invalid"
711 HAS_HASH_ALG="NO"
712 case $1 in
Sam Berry06b91be2024-06-19 11:43:03 +0100[diff] [blame]713 MD5):;;
Andrzej Kurek9c061a22022-09-05 10:51:19 -0400[diff] [blame]714 SHA_1):;;
715 SHA_224):;;
716 SHA_256):;;
717 SHA_384):;;
718 SHA_512):;;
719 *)
720 echo "Unsupported hash alg - $1"
721 exit 1
722 ;;
723 esac
724
725 HASH_DEFINE=HAS_ALG_${1}
726 eval "HAS_HASH_ALG=\${${HASH_DEFINE}}"
727 if [ "$HAS_HASH_ALG" = "NO" ]
728 then
729 SKIP_NEXT="YES"
730 fi
731}
732
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]733# Skip next test if the given pk alg is not enabled
734requires_pk_alg() {
735 case $1 in
736 ECDSA)
737 if is_config_enabled MBEDTLS_USE_PSA_CRYPTO; then
738 requires_config_enabled PSA_WANT_ALG_ECDSA
739 else
740 requires_config_enabled MBEDTLS_ECDSA_C
741 fi
742 ;;
743 *)
744 echo "Unknown/unimplemented case $1 in requires_pk_alg"
745 exit 1
746 ;;
747 esac
748}
749
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]750# skip next test if OpenSSL doesn't support FALLBACK_SCSV
751requires_openssl_with_fallback_scsv() {
752 if [ -z "${OPENSSL_HAS_FBSCSV:-}" ]; then
Manuel Pégourié-Gonnardc5722462022-12-19 11:42:12 +0100[diff] [blame]753 if $OPENSSL s_client -help 2>&1 | grep fallback_scsv >/dev/null
Manuel Pégourié-Gonnard1cbd39d2014-10-20 13:34:59 +0200[diff] [blame]754 then
755 OPENSSL_HAS_FBSCSV="YES"
756 else
757 OPENSSL_HAS_FBSCSV="NO"
758 fi
759 fi
760 if [ "$OPENSSL_HAS_FBSCSV" = "NO" ]; then
761 SKIP_NEXT="YES"
762 fi
763}
764
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]765# skip next test if either IN_CONTENT_LEN or MAX_CONTENT_LEN are below a value
766requires_max_content_len() {
767 requires_config_value_at_least "MBEDTLS_SSL_IN_CONTENT_LEN" $1
768 requires_config_value_at_least "MBEDTLS_SSL_OUT_CONTENT_LEN" $1
769}
770
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]771# skip next test if GnuTLS isn't available
772requires_gnutls() {
773 if [ -z "${GNUTLS_AVAILABLE:-}" ]; then
Manuel Pégourié-Gonnard03db6b02015-06-26 15:45:30 +0200[diff] [blame]774 if ( which "$GNUTLS_CLI" && which "$GNUTLS_SERV" ) >/dev/null 2>&1; then
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]775 GNUTLS_AVAILABLE="YES"
776 else
777 GNUTLS_AVAILABLE="NO"
778 fi
779 fi
780 if [ "$GNUTLS_AVAILABLE" = "NO" ]; then
781 SKIP_NEXT="YES"
782 fi
783}
784
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]785# skip next test if GnuTLS-next isn't available
786requires_gnutls_next() {
787 if [ -z "${GNUTLS_NEXT_AVAILABLE:-}" ]; then
788 if ( which "${GNUTLS_NEXT_CLI:-}" && which "${GNUTLS_NEXT_SERV:-}" ) >/dev/null 2>&1; then
789 GNUTLS_NEXT_AVAILABLE="YES"
790 else
791 GNUTLS_NEXT_AVAILABLE="NO"
792 fi
793 fi
794 if [ "$GNUTLS_NEXT_AVAILABLE" = "NO" ]; then
795 SKIP_NEXT="YES"
796 fi
797}
798
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]799requires_openssl_next() {
800 if [ -z "${OPENSSL_NEXT_AVAILABLE:-}" ]; then
801 if which "${OPENSSL_NEXT:-}" >/dev/null 2>&1; then
802 OPENSSL_NEXT_AVAILABLE="YES"
803 else
804 OPENSSL_NEXT_AVAILABLE="NO"
805 fi
806 fi
807 if [ "$OPENSSL_NEXT_AVAILABLE" = "NO" ]; then
808 SKIP_NEXT="YES"
809 fi
810}
811
Przemek Stekiel422ab1f2023-06-14 11:04:28 +0200[diff] [blame]812# skip next test if openssl version is lower than 3.0
813requires_openssl_3_x() {
814 requires_openssl_next
815 if [ "$OPENSSL_NEXT_AVAILABLE" = "NO" ]; then
816 OPENSSL_3_X_AVAILABLE="NO"
817 fi
818 if [ -z "${OPENSSL_3_X_AVAILABLE:-}" ]; then
Przemek Stekiela53dca12023-06-14 20:53:09 +0200[diff] [blame]819 if $OPENSSL_NEXT version 2>&1 | grep "OpenSSL 3." >/dev/null
Przemek Stekiel422ab1f2023-06-14 11:04:28 +0200[diff] [blame]820 then
821 OPENSSL_3_X_AVAILABLE="YES"
822 else
823 OPENSSL_3_X_AVAILABLE="NO"
824 fi
825 fi
826 if [ "$OPENSSL_3_X_AVAILABLE" = "NO" ]; then
827 SKIP_NEXT="YES"
828 fi
829}
830
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]831# skip next test if openssl does not support ffdh keys
832requires_openssl_tls1_3_with_ffdh() {
833 requires_openssl_3_x
834}
835
Przemek Stekiel7dda2712023-06-27 14:43:33 +0200[diff] [blame]836# skip next test if openssl cannot handle ephemeral key exchange
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]837requires_openssl_tls1_3_with_compatible_ephemeral() {
838 requires_openssl_next
839
840 if !(is_config_enabled "PSA_WANT_ALG_ECDH"); then
841 requires_openssl_tls1_3_with_ffdh
842 fi
843}
844
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]845# skip next test if tls1_3 is not available
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]846requires_openssl_tls1_3() {
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]847 requires_openssl_next
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]848 if [ "$OPENSSL_NEXT_AVAILABLE" = "NO" ]; then
849 OPENSSL_TLS1_3_AVAILABLE="NO"
850 fi
851 if [ -z "${OPENSSL_TLS1_3_AVAILABLE:-}" ]; then
852 if $OPENSSL_NEXT s_client -help 2>&1 | grep tls1_3 >/dev/null
853 then
854 OPENSSL_TLS1_3_AVAILABLE="YES"
855 else
856 OPENSSL_TLS1_3_AVAILABLE="NO"
857 fi
858 fi
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]859 if [ "$OPENSSL_TLS1_3_AVAILABLE" = "NO" ]; then
860 SKIP_NEXT="YES"
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]861 fi
862}
863
Gilles Peskine5838a642024-09-09 10:57:01 +0200[diff] [blame]864# OpenSSL servers forbid client renegotiation by default since OpenSSL 3.0.
865# Older versions always allow it and have no command-line option.
Gilles Peskineed8cc462024-09-06 13:52:14 +0200[diff] [blame]866OPENSSL_S_SERVER_CLIENT_RENEGOTIATION=
867case $($OPENSSL s_server -help 2>&1) in
868 *-client_renegotiation*)
869 OPENSSL_S_SERVER_CLIENT_RENEGOTIATION=-client_renegotiation;;
870esac
871
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]872# skip next test if tls1_3 is not available
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]873requires_gnutls_tls1_3() {
874 requires_gnutls_next
875 if [ "$GNUTLS_NEXT_AVAILABLE" = "NO" ]; then
876 GNUTLS_TLS1_3_AVAILABLE="NO"
877 fi
878 if [ -z "${GNUTLS_TLS1_3_AVAILABLE:-}" ]; then
879 if $GNUTLS_NEXT_CLI -l 2>&1 | grep VERS-TLS1.3 >/dev/null
880 then
881 GNUTLS_TLS1_3_AVAILABLE="YES"
882 else
883 GNUTLS_TLS1_3_AVAILABLE="NO"
884 fi
885 fi
886 if [ "$GNUTLS_TLS1_3_AVAILABLE" = "NO" ]; then
887 SKIP_NEXT="YES"
888 fi
889}
890
Jerry Yu75261df2021-09-02 17:40:08 +0800[diff] [blame]891# Check %NO_TICKETS option
Jerry Yub12d81d2021-08-17 10:56:08 +0800[diff] [blame]892requires_gnutls_next_no_ticket() {
893 requires_gnutls_next
894 if [ "$GNUTLS_NEXT_AVAILABLE" = "NO" ]; then
895 GNUTLS_NO_TICKETS_AVAILABLE="NO"
896 fi
897 if [ -z "${GNUTLS_NO_TICKETS_AVAILABLE:-}" ]; then
898 if $GNUTLS_NEXT_CLI --priority-list 2>&1 | grep NO_TICKETS >/dev/null
899 then
900 GNUTLS_NO_TICKETS_AVAILABLE="YES"
901 else
902 GNUTLS_NO_TICKETS_AVAILABLE="NO"
903 fi
904 fi
905 if [ "$GNUTLS_NO_TICKETS_AVAILABLE" = "NO" ]; then
906 SKIP_NEXT="YES"
907 fi
908}
909
Jerry Yu75261df2021-09-02 17:40:08 +0800[diff] [blame]910# Check %DISABLE_TLS13_COMPAT_MODE option
Jerry Yub12d81d2021-08-17 10:56:08 +0800[diff] [blame]911requires_gnutls_next_disable_tls13_compat() {
912 requires_gnutls_next
913 if [ "$GNUTLS_NEXT_AVAILABLE" = "NO" ]; then
914 GNUTLS_DISABLE_TLS13_COMPAT_MODE_AVAILABLE="NO"
915 fi
916 if [ -z "${GNUTLS_DISABLE_TLS13_COMPAT_MODE_AVAILABLE:-}" ]; then
917 if $GNUTLS_NEXT_CLI --priority-list 2>&1 | grep DISABLE_TLS13_COMPAT_MODE >/dev/null
918 then
919 GNUTLS_DISABLE_TLS13_COMPAT_MODE_AVAILABLE="YES"
920 else
921 GNUTLS_DISABLE_TLS13_COMPAT_MODE_AVAILABLE="NO"
922 fi
923 fi
924 if [ "$GNUTLS_DISABLE_TLS13_COMPAT_MODE_AVAILABLE" = "NO" ]; then
925 SKIP_NEXT="YES"
926 fi
927}
928
Jan Bruckneraa31b192023-02-06 12:54:29 +0100[diff] [blame]929# skip next test if GnuTLS does not support the record size limit extension
930requires_gnutls_record_size_limit() {
931 requires_gnutls_next
932 if [ "$GNUTLS_NEXT_AVAILABLE" = "NO" ]; then
933 GNUTLS_RECORD_SIZE_LIMIT_AVAILABLE="NO"
934 else
935 GNUTLS_RECORD_SIZE_LIMIT_AVAILABLE="YES"
936 fi
937 if [ "$GNUTLS_RECORD_SIZE_LIMIT_AVAILABLE" = "NO" ]; then
938 SKIP_NEXT="YES"
939 fi
940}
941
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]942# skip next test if IPv6 isn't available on this host
943requires_ipv6() {
944 if [ -z "${HAS_IPV6:-}" ]; then
945 $P_SRV server_addr='::1' > $SRV_OUT 2>&1 &
946 SRV_PID=$!
947 sleep 1
948 kill $SRV_PID >/dev/null 2>&1
949 if grep "NET - Binding of the socket failed" $SRV_OUT >/dev/null; then
950 HAS_IPV6="NO"
951 else
952 HAS_IPV6="YES"
953 fi
954 rm -r $SRV_OUT
955 fi
956
957 if [ "$HAS_IPV6" = "NO" ]; then
958 SKIP_NEXT="YES"
959 fi
960}
961
Andrzej Kurekb4593462018-10-11 08:43:30 -0400[diff] [blame]962# skip next test if it's i686 or uname is not available
963requires_not_i686() {
964 if [ -z "${IS_I686:-}" ]; then
965 IS_I686="YES"
966 if which "uname" >/dev/null 2>&1; then
967 if [ -z "$(uname -a | grep i686)" ]; then
968 IS_I686="NO"
969 fi
970 fi
971 fi
972 if [ "$IS_I686" = "YES" ]; then
973 SKIP_NEXT="YES"
974 fi
975}
976
David Horstmann95d516f2021-05-04 18:36:56 +0100[diff] [blame]977MAX_CONTENT_LEN=16384
Yuto Takano2be6f1a2021-06-22 07:16:40 +0100[diff] [blame]978MAX_IN_LEN=$( get_config_value_or_default "MBEDTLS_SSL_IN_CONTENT_LEN" )
979MAX_OUT_LEN=$( get_config_value_or_default "MBEDTLS_SSL_OUT_CONTENT_LEN" )
Tomás González06956a12023-08-23 15:46:20 +0100[diff] [blame]980if [ "$LIST_TESTS" -eq 0 ];then
981 # Calculate the input & output maximum content lengths set in the config
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]982
Tomás González06956a12023-08-23 15:46:20 +0100[diff] [blame]983 # Calculate the maximum content length that fits both
984 if [ "$MAX_IN_LEN" -lt "$MAX_CONTENT_LEN" ]; then
985 MAX_CONTENT_LEN="$MAX_IN_LEN"
986 fi
987 if [ "$MAX_OUT_LEN" -lt "$MAX_CONTENT_LEN" ]; then
988 MAX_CONTENT_LEN="$MAX_OUT_LEN"
989 fi
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]990fi
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]991# skip the next test if the SSL output buffer is less than 16KB
992requires_full_size_output_buffer() {
993 if [ "$MAX_OUT_LEN" -ne 16384 ]; then
994 SKIP_NEXT="YES"
995 fi
996}
997
Gilles Peskine6bdebfe2024-10-31 18:52:40 +0100[diff] [blame]998# Skip the next test if called by all.sh in a component with MSan
999# (which we also call MemSan) or Valgrind.
1000not_with_msan_or_valgrind() {
1001 case "_${MBEDTLS_TEST_CONFIGURATION:-}_" in
1002 *_msan_*|*_memsan_*|*_valgrind_*) SKIP_NEXT="YES";;
1003 esac
1004}
1005
Manuel Pégourié-Gonnard76fe9e42014-09-24 15:17:31 +0200[diff] [blame]1006# skip the next test if valgrind is in use
1007not_with_valgrind() {
1008 if [ "$MEMCHECK" -gt 0 ]; then
1009 SKIP_NEXT="YES"
1010 fi
1011}
1012
Paul Bakker362689d2016-05-13 10:33:25 +0100[diff] [blame]1013# skip the next test if valgrind is NOT in use
1014only_with_valgrind() {
1015 if [ "$MEMCHECK" -eq 0 ]; then
1016 SKIP_NEXT="YES"
1017 fi
1018}
1019
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]1020# multiply the client timeout delay by the given factor for the next test
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]1021client_needs_more_time() {
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]1022 CLI_DELAY_FACTOR=$1
1023}
1024
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]1025# wait for the given seconds after the client finished in the next test
1026server_needs_more_time() {
1027 SRV_DELAY_SECONDS=$1
1028}
1029
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]1030# print_name <name>
1031print_name() {
Paul Bakkere20310a2016-05-10 11:18:17 +0100[diff] [blame]1032 TESTS=$(( $TESTS + 1 ))
1033 LINE=""
1034
1035 if [ "$SHOW_TEST_NUMBER" -gt 0 ]; then
1036 LINE="$TESTS "
1037 fi
1038
1039 LINE="$LINE$1"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]1040
Tomás González378e3642023-09-04 10:41:37 +0100[diff] [blame]1041 printf "%s " "$LINE"
1042 LEN=$(( 72 - `echo "$LINE" | wc -c` ))
1043 for i in `seq 1 $LEN`; do printf '.'; done
1044 printf ' '
1045
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]1046}
1047
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]1048# record_outcome <outcome> [<failure-reason>]
1049# The test name must be in $NAME.
Gilles Peskine5eb2b022022-01-07 15:47:02 +0100[diff] [blame]1050# Use $TEST_SUITE_NAME as the test suite name if set.
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]1051record_outcome() {
1052 echo "$1"
1053 if [ -n "$MBEDTLS_TEST_OUTCOME_FILE" ]; then
1054 printf '%s;%s;%s;%s;%s;%s\n' \
1055 "$MBEDTLS_TEST_PLATFORM" "$MBEDTLS_TEST_CONFIGURATION" \
Jerry Yu9e47b262023-11-06 10:52:01 +0800[diff] [blame]1056 "${TEST_SUITE_NAME:-ssl-opt}" "$NAME" \
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]1057 "$1" "${2-}" \
1058 >>"$MBEDTLS_TEST_OUTCOME_FILE"
1059 fi
1060}
Gilles Peskine5eb2b022022-01-07 15:47:02 +0100[diff] [blame]1061unset TEST_SUITE_NAME
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]1062
Gilles Peskine788ad332021-10-20 14:17:02 +0200[diff] [blame]1063# True if the presence of the given pattern in a log definitely indicates
1064# that the test has failed. False if the presence is inconclusive.
1065#
1066# Inputs:
1067# * $1: pattern found in the logs
1068# * $TIMES_LEFT: >0 if retrying is an option
1069#
1070# Outputs:
1071# * $outcome: set to a retry reason if the pattern is inconclusive,
1072# unchanged otherwise.
1073# * Return value: 1 if the pattern is inconclusive,
1074# 0 if the failure is definitive.
1075log_pattern_presence_is_conclusive() {
1076 # If we've run out of attempts, then don't retry no matter what.
1077 if [ $TIMES_LEFT -eq 0 ]; then
1078 return 0
1079 fi
1080 case $1 in
1081 "resend")
1082 # An undesired resend may have been caused by the OS dropping or
1083 # delaying a packet at an inopportune time.
1084 outcome="RETRY(resend)"
1085 return 1;;
1086 esac
1087}
1088
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]1089# fail <message>
1090fail() {
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]1091 record_outcome "FAIL" "$1"
Manuel Pégourié-Gonnard3eec6042014-02-27 15:37:24 +0100[diff] [blame]1092 echo " ! $1"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]1093
Manuel Pégourié-Gonnardc2b00922014-08-31 16:46:04 +0200[diff] [blame]1094 mv $SRV_OUT o-srv-${TESTS}.log
1095 mv $CLI_OUT o-cli-${TESTS}.log
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1096 if [ -n "$PXY_CMD" ]; then
1097 mv $PXY_OUT o-pxy-${TESTS}.log
1098 fi
1099 echo " ! outputs saved to o-XXX-${TESTS}.log"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]1100
Manuel Pégourié-Gonnard3f3302f2020-06-08 11:49:05 +0200[diff] [blame]1101 if [ "${LOG_FAILURE_ON_STDOUT:-0}" != 0 ]; then
Manuel Pégourié-Gonnard7fa67722014-08-31 17:42:53 +0200[diff] [blame]1102 echo " ! server output:"
1103 cat o-srv-${TESTS}.log
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1104 echo " ! ========================================================"
Manuel Pégourié-Gonnard7fa67722014-08-31 17:42:53 +0200[diff] [blame]1105 echo " ! client output:"
1106 cat o-cli-${TESTS}.log
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1107 if [ -n "$PXY_CMD" ]; then
1108 echo " ! ========================================================"
1109 echo " ! proxy output:"
1110 cat o-pxy-${TESTS}.log
1111 fi
1112 echo ""
Manuel Pégourié-Gonnard7fa67722014-08-31 17:42:53 +0200[diff] [blame]1113 fi
1114
Manuel Pégourié-Gonnard72e51ee2014-08-31 10:22:11 +0200[diff] [blame]1115 FAILS=$(( $FAILS + 1 ))
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]1116}
1117
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]1118# is_polar <cmd_line>
1119is_polar() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]1120 case "$1" in
1121 *ssl_client2*) true;;
1122 *ssl_server2*) true;;
1123 *) false;;
1124 esac
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]1125}
1126
Manuel Pégourié-Gonnardfa60f122014-09-26 16:07:29 +0200[diff] [blame]1127# openssl s_server doesn't have -www with DTLS
1128check_osrv_dtls() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]1129 case "$SRV_CMD" in
1130 *s_server*-dtls*)
1131 NEEDS_INPUT=1
1132 SRV_CMD="$( echo $SRV_CMD | sed s/-www// )";;
1133 *) NEEDS_INPUT=0;;
1134 esac
Manuel Pégourié-Gonnardfa60f122014-09-26 16:07:29 +0200[diff] [blame]1135}
1136
1137# provide input to commands that need it
1138provide_input() {
1139 if [ $NEEDS_INPUT -eq 0 ]; then
1140 return
1141 fi
1142
1143 while true; do
1144 echo "HTTP/1.0 200 OK"
1145 sleep 1
1146 done
1147}
1148
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1149# has_mem_err <log_file_name>
1150has_mem_err() {
1151 if ( grep -F 'All heap blocks were freed -- no leaks are possible' "$1" &&
1152 grep -F 'ERROR SUMMARY: 0 errors from 0 contexts' "$1" ) > /dev/null
1153 then
1154 return 1 # false: does not have errors
1155 else
1156 return 0 # true: has errors
1157 fi
1158}
1159
Unknownd364f4c2019-09-02 10:42:57 -0400[diff] [blame]1160# Wait for process $2 named $3 to be listening on port $1. Print error to $4.
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]1161if type lsof >/dev/null 2>/dev/null; then
Unknownd364f4c2019-09-02 10:42:57 -0400[diff] [blame]1162 wait_app_start() {
Paul Elliotte05e1262021-10-20 15:59:33 +0100[diff] [blame]1163 newline='
1164'
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]1165 START_TIME=$(date +%s)
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]1166 if [ "$DTLS" -eq 1 ]; then
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]1167 proto=UDP
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]1168 else
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]1169 proto=TCP
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]1170 fi
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]1171 # Make a tight loop, server normally takes less than 1s to start.
Paul Elliott58ed8a72021-10-19 17:56:39 +0100[diff] [blame]1172 while true; do
Gilles Peskine5bd0b512022-04-15 22:53:18 +0200[diff] [blame]1173 SERVER_PIDS=$(lsof -a -n -b -i "$proto:$1" -t)
Paul Elliotte05e1262021-10-20 15:59:33 +0100[diff] [blame]1174 # When we use a proxy, it will be listening on the same port we
1175 # are checking for as well as the server and lsof will list both.
Paul Elliotte05e1262021-10-20 15:59:33 +0100[diff] [blame]1176 case ${newline}${SERVER_PIDS}${newline} in
Gilles Peskine5bd0b512022-04-15 22:53:18 +0200[diff] [blame]1177 *${newline}${2}${newline}*) break;;
Paul Elliotte05e1262021-10-20 15:59:33 +0100[diff] [blame]1178 esac
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]1179 if [ $(( $(date +%s) - $START_TIME )) -gt $DOG_DELAY ]; then
Unknownd364f4c2019-09-02 10:42:57 -0400[diff] [blame]1180 echo "$3 START TIMEOUT"
1181 echo "$3 START TIMEOUT" >> $4
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]1182 break
1183 fi
1184 # Linux and *BSD support decimal arguments to sleep. On other
1185 # OSes this may be a tight loop.
1186 sleep 0.1 2>/dev/null || true
1187 done
1188 }
1189else
Unknownd364f4c2019-09-02 10:42:57 -0400[diff] [blame]1190 echo "Warning: lsof not available, wait_app_start = sleep"
1191 wait_app_start() {
Manuel Pégourié-Gonnard0c1ec472014-06-20 18:41:11 +0200[diff] [blame]1192 sleep "$START_DELAY"
Gilles Peskine418b5362017-12-14 18:58:42 +0100[diff] [blame]1193 }
1194fi
Manuel Pégourié-Gonnard0c1ec472014-06-20 18:41:11 +0200[diff] [blame]1195
Unknownd364f4c2019-09-02 10:42:57 -0400[diff] [blame]1196# Wait for server process $2 to be listening on port $1.
1197wait_server_start() {
1198 wait_app_start $1 $2 "SERVER" $SRV_OUT
1199}
1200
1201# Wait for proxy process $2 to be listening on port $1.
1202wait_proxy_start() {
1203 wait_app_start $1 $2 "PROXY" $PXY_OUT
1204}
1205
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]1206# Given the client or server debug output, parse the unix timestamp that is
Andres Amaya Garcia3b1bdff2017-09-14 12:41:29 +0100[diff] [blame]1207# included in the first 4 bytes of the random bytes and check that it's within
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]1208# acceptable bounds
1209check_server_hello_time() {
1210 # Extract the time from the debug (lvl 3) output of the client
Andres Amaya Garcia67d8da52017-09-15 15:49:24 +0100[diff] [blame]1211 SERVER_HELLO_TIME="$(sed -n 's/.*server hello, current time: //p' < "$1")"
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]1212 # Get the Unix timestamp for now
1213 CUR_TIME=$(date +'%s')
1214 THRESHOLD_IN_SECS=300
1215
1216 # Check if the ServerHello time was printed
1217 if [ -z "$SERVER_HELLO_TIME" ]; then
1218 return 1
1219 fi
1220
1221 # Check the time in ServerHello is within acceptable bounds
1222 if [ $SERVER_HELLO_TIME -lt $(( $CUR_TIME - $THRESHOLD_IN_SECS )) ]; then
1223 # The time in ServerHello is at least 5 minutes before now
1224 return 1
1225 elif [ $SERVER_HELLO_TIME -gt $(( $CUR_TIME + $THRESHOLD_IN_SECS )) ]; then
Andres Amaya Garcia3b1bdff2017-09-14 12:41:29 +0100[diff] [blame]1226 # The time in ServerHello is at least 5 minutes later than now
Andres Amaya Garciab84c40b2017-09-06 15:44:01 +0100[diff] [blame]1227 return 1
1228 else
1229 return 0
1230 fi
1231}
1232
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1233# Get handshake memory usage from server or client output and put it into the variable specified by the first argument
1234handshake_memory_get() {
1235 OUTPUT_VARIABLE="$1"
1236 OUTPUT_FILE="$2"
1237
1238 # Get memory usage from a pattern like "Heap memory usage after handshake: 23112 bytes. Peak memory usage was 33112"
1239 MEM_USAGE=$(sed -n 's/.*Heap memory usage after handshake: //p' < "$OUTPUT_FILE" | grep -o "[0-9]*" | head -1)
1240
1241 # Check if memory usage was read
1242 if [ -z "$MEM_USAGE" ]; then
1243 echo "Error: Can not read the value of handshake memory usage"
1244 return 1
1245 else
1246 eval "$OUTPUT_VARIABLE=$MEM_USAGE"
1247 return 0
1248 fi
1249}
1250
1251# Get handshake memory usage from server or client output and check if this value
1252# is not higher than the maximum given by the first argument
1253handshake_memory_check() {
1254 MAX_MEMORY="$1"
1255 OUTPUT_FILE="$2"
1256
1257 # Get memory usage
1258 if ! handshake_memory_get "MEMORY_USAGE" "$OUTPUT_FILE"; then
1259 return 1
1260 fi
1261
1262 # Check if memory usage is below max value
1263 if [ "$MEMORY_USAGE" -gt "$MAX_MEMORY" ]; then
1264 echo "\nFailed: Handshake memory usage was $MEMORY_USAGE bytes," \
1265 "but should be below $MAX_MEMORY bytes"
1266 return 1
1267 else
1268 return 0
1269 fi
1270}
1271
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]1272# wait for client to terminate and set CLI_EXIT
1273# must be called right after starting the client
1274wait_client_done() {
1275 CLI_PID=$!
1276
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]1277 CLI_DELAY=$(( $DOG_DELAY * $CLI_DELAY_FACTOR ))
1278 CLI_DELAY_FACTOR=1
1279
Manuel Pégourié-Gonnarda365add2015-08-04 20:57:59 +0200[diff] [blame]1280 ( sleep $CLI_DELAY; echo "===CLIENT_TIMEOUT===" >> $CLI_OUT; kill $CLI_PID ) &
Manuel Pégourié-Gonnarda6189f02014-09-20 13:15:43 +0200[diff] [blame]1281 DOG_PID=$!
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]1282
Jerry Yud2d41102022-07-26 17:34:42 +0800[diff] [blame]1283 # For Ubuntu 22.04, `Terminated` message is outputed by wait command.
1284 # To remove it from stdout, redirect stdout/stderr to CLI_OUT
1285 wait $CLI_PID >> $CLI_OUT 2>&1
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]1286 CLI_EXIT=$?
1287
Manuel Pégourié-Gonnarda6189f02014-09-20 13:15:43 +0200[diff] [blame]1288 kill $DOG_PID >/dev/null 2>&1
Jerry Yufe52e552022-07-09 04:23:43 +0000[diff] [blame]1289 wait $DOG_PID >> $CLI_OUT 2>&1
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]1290
1291 echo "EXIT: $CLI_EXIT" >> $CLI_OUT
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]1292
1293 sleep $SRV_DELAY_SECONDS
1294 SRV_DELAY_SECONDS=0
Manuel Pégourié-Gonnardc0f6a692014-08-30 22:41:47 +0200[diff] [blame]1295}
1296
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]1297# check if the given command uses dtls and sets global variable DTLS
1298detect_dtls() {
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]1299 case "$1" in
Gilles Peskine9d104e92024-09-04 16:51:50 +0200[diff] [blame]1300 *dtls=1*|*-dtls*|*-u*|*/dtls_*) DTLS=1;;
Gilles Peskine64457492020-08-26 21:53:33 +0200[diff] [blame]1301 *) DTLS=0;;
1302 esac
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]1303}
1304
Dave Rodgman0279c2f2021-02-10 12:45:41 +0000[diff] [blame]1305# check if the given command uses gnutls and sets global variable CMD_IS_GNUTLS
1306is_gnutls() {
1307 case "$1" in
1308 *gnutls-cli*)
1309 CMD_IS_GNUTLS=1
1310 ;;
1311 *gnutls-serv*)
1312 CMD_IS_GNUTLS=1
1313 ;;
1314 *)
1315 CMD_IS_GNUTLS=0
1316 ;;
1317 esac
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1318}
1319
Valerio Setti2f8eb622023-03-16 13:04:44 +0100[diff] [blame]1320# Some external tools (gnutls or openssl) might not have support for static ECDH
1321# and this limit the tests that can be run with them. This function checks server
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]1322# and client command lines, given as input, to verify if the current test
1323# is using one of these tools.
1324use_ext_tool_without_ecdh_support() {
1325 case "$1" in
1326 *$GNUTLS_SERV*|\
1327 *${GNUTLS_NEXT_SERV:-"gnutls-serv-dummy"}*|\
1328 *${OPENSSL_NEXT:-"openssl-dummy"}*)
1329 echo "yes"
1330 return;;
1331 esac
1332 case "$2" in
1333 *$GNUTLS_CLI*|\
1334 *${GNUTLS_NEXT_CLI:-"gnutls-cli-dummy"}*|\
1335 *${OPENSSL_NEXT:-"openssl-dummy"}*)
1336 echo "yes"
1337 return;;
1338 esac
1339 echo "no"
1340}
1341
Jerry Yuf467d462022-11-07 13:12:44 +0800[diff] [blame]1342# Generate random psk_list argument for ssl_server2
1343get_srv_psk_list ()
1344{
1345 case $(( TESTS % 3 )) in
1346 0) echo "psk_list=abc,dead,def,beef,Client_identity,6162636465666768696a6b6c6d6e6f70";;
1347 1) echo "psk_list=abc,dead,Client_identity,6162636465666768696a6b6c6d6e6f70,def,beef";;
1348 2) echo "psk_list=Client_identity,6162636465666768696a6b6c6d6e6f70,abc,dead,def,beef";;
1349 esac
1350}
1351
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1352# Determine what calc_verify trace is to be expected, if any.
1353#
1354# calc_verify is only called for two things: to calculate the
1355# extended master secret, and to process client authentication.
1356#
1357# Warning: the current implementation assumes that extended_ms is not
1358# disabled on the client or on the server.
1359#
1360# Inputs:
Gilles Peskinec8d242f2022-04-06 22:23:45 +0200[diff] [blame]1361# * $1: the value of the server auth_mode parameter.
1362# 'required' if client authentication is expected,
1363# 'none' or absent if not.
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1364# * $CONFIGS_ENABLED
1365#
1366# Outputs:
1367# * $maybe_calc_verify: set to a trace expected in the debug logs
1368set_maybe_calc_verify() {
1369 maybe_calc_verify=
1370 case $CONFIGS_ENABLED in
1371 *\ MBEDTLS_SSL_EXTENDED_MASTER_SECRET\ *) :;;
1372 *)
1373 case ${1-} in
Gilles Peskinec8d242f2022-04-06 22:23:45 +0200[diff] [blame]1374 ''|none) return;;
1375 required) :;;
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1376 *) echo "Bad parameter 1 to set_maybe_calc_verify: $1"; exit 1;;
1377 esac
1378 esac
1379 case $CONFIGS_ENABLED in
1380 *\ MBEDTLS_USE_PSA_CRYPTO\ *) maybe_calc_verify="PSA calc verify";;
1381 *) maybe_calc_verify="<= calc verify";;
1382 esac
1383}
1384
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]1385# Compare file content
1386# Usage: find_in_both pattern file1 file2
1387# extract from file1 the first line matching the pattern
1388# check in file2 that the same line can be found
1389find_in_both() {
1390 srv_pattern=$(grep -m 1 "$1" "$2");
1391 if [ -z "$srv_pattern" ]; then
1392 return 1;
1393 fi
1394
1395 if grep "$srv_pattern" $3 >/dev/null; then :
Johan Pascal10403152020-10-09 20:43:51 +0200[diff] [blame]1396 return 0;
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]1397 else
1398 return 1;
1399 fi
1400}
1401
Jerry Yuc46e9b42021-08-06 11:22:24 +0800[diff] [blame]1402SKIP_HANDSHAKE_CHECK="NO"
1403skip_handshake_stage_check() {
1404 SKIP_HANDSHAKE_CHECK="YES"
1405}
1406
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1407# Analyze the commands that will be used in a test.
1408#
1409# Analyze and possibly instrument $PXY_CMD, $CLI_CMD, $SRV_CMD to pass
1410# extra arguments or go through wrappers.
Gilles Peskine59601d72022-04-05 22:00:17 +0200[diff] [blame]1411#
1412# Inputs:
1413# * $@: supplemental options to run_test() (after the mandatory arguments).
1414# * $CLI_CMD, $PXY_CMD, $SRV_CMD: the client, proxy and server commands.
1415# * $DTLS: 1 if DTLS, otherwise 0.
1416#
1417# Outputs:
1418# * $CLI_CMD, $PXY_CMD, $SRV_CMD: may be tweaked.
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1419analyze_test_commands() {
Gilles Peskinef8b373e2024-09-04 16:07:56 +0200[diff] [blame]1420 # If the test uses DTLS, does not force a specific port, and does not
1421 # specify a custom proxy, add a simple proxy.
1422 # It provides timing info that's useful to debug failures.
1423 if [ "$DTLS" -eq 1 ] &&
1424 [ "$THIS_SRV_PORT" = "$SRV_PORT" ] &&
1425 [ -z "$PXY_CMD" ]
1426 then
Manuel Pégourié-Gonnardf4557862020-06-08 11:40:06 +0200[diff] [blame]1427 PXY_CMD="$P_PXY"
Manuel Pégourié-Gonnard8779e9a2020-07-16 10:19:32 +0200[diff] [blame]1428 case " $SRV_CMD " in
1429 *' server_addr=::1 '*)
1430 PXY_CMD="$PXY_CMD server_addr=::1 listen_addr=::1";;
1431 esac
Manuel Pégourié-Gonnardf4557862020-06-08 11:40:06 +0200[diff] [blame]1432 fi
1433
Dave Rodgman0279c2f2021-02-10 12:45:41 +0000[diff] [blame]1434 # update CMD_IS_GNUTLS variable
1435 is_gnutls "$SRV_CMD"
1436
1437 # if the server uses gnutls but doesn't set priority, explicitly
1438 # set the default priority
1439 if [ "$CMD_IS_GNUTLS" -eq 1 ]; then
1440 case "$SRV_CMD" in
1441 *--priority*) :;;
1442 *) SRV_CMD="$SRV_CMD --priority=NORMAL";;
1443 esac
1444 fi
1445
1446 # update CMD_IS_GNUTLS variable
1447 is_gnutls "$CLI_CMD"
1448
1449 # if the client uses gnutls but doesn't set priority, explicitly
1450 # set the default priority
1451 if [ "$CMD_IS_GNUTLS" -eq 1 ]; then
1452 case "$CLI_CMD" in
1453 *--priority*) :;;
1454 *) CLI_CMD="$CLI_CMD --priority=NORMAL";;
1455 esac
1456 fi
1457
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1458 # fix client port
1459 if [ -n "$PXY_CMD" ]; then
1460 CLI_CMD=$( echo "$CLI_CMD" | sed s/+SRV_PORT/$PXY_PORT/g )
1461 else
Gilles Peskine6c798ef2024-09-04 16:05:11 +0200[diff] [blame]1462 CLI_CMD=$( echo "$CLI_CMD" | sed s/+SRV_PORT/$THIS_SRV_PORT/g )
1463 fi
1464
1465 # If the test forces a specific port and the server is OpenSSL or
1466 # GnuTLS, override its port specification.
1467 if [ "$THIS_SRV_PORT" != "$SRV_PORT" ]; then
1468 case "$SRV_CMD" in
Gilles Peskine8d64fe12024-09-04 23:33:36 +0200[diff] [blame]1469 "$G_SRV"*|"$G_NEXT_SRV"*)
1470 SRV_CMD=$(
1471 printf %s "$SRV_CMD " |
1472 sed -e "s/ -p $SRV_PORT / -p $THIS_SRV_PORT /"
1473 );;
Gilles Peskine6c798ef2024-09-04 16:05:11 +0200[diff] [blame]1474 "$O_SRV"*|"$O_NEXT_SRV"*) SRV_CMD="$SRV_CMD -accept $THIS_SRV_PORT";;
1475 esac
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1476 fi
1477
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1478 # prepend valgrind to our commands if active
1479 if [ "$MEMCHECK" -gt 0 ]; then
1480 if is_polar "$SRV_CMD"; then
1481 SRV_CMD="valgrind --leak-check=full $SRV_CMD"
1482 fi
1483 if is_polar "$CLI_CMD"; then
1484 CLI_CMD="valgrind --leak-check=full $CLI_CMD"
1485 fi
1486 fi
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1487}
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1488
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1489# Check for failure conditions after a test case.
1490#
1491# Inputs from run_test:
1492# * positional parameters: test options (see run_test documentation)
1493# * $CLI_EXIT: client return code
1494# * $CLI_EXPECT: expected client return code
1495# * $SRV_RET: server return code
1496# * $CLI_OUT, $SRV_OUT, $PXY_OUT: files containing client/server/proxy logs
Gilles Peskine0e3534c2021-10-19 17:23:25 +0200[diff] [blame]1497# * $TIMES_LEFT: if nonzero, a RETRY outcome is allowed
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1498#
1499# Outputs:
Gilles Peskinef11d30e2021-10-19 18:00:10 +0200[diff] [blame]1500# * $outcome: one of PASS/RETRY*/FAIL
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1501check_test_failure() {
Gilles Peskine0e3534c2021-10-19 17:23:25 +0200[diff] [blame]1502 outcome=FAIL
Manuel Pégourié-Gonnarda365add2015-08-04 20:57:59 +0200[diff] [blame]1503
Gilles Peskine0e3534c2021-10-19 17:23:25 +0200[diff] [blame]1504 if [ $TIMES_LEFT -gt 0 ] &&
1505 grep '===CLIENT_TIMEOUT===' $CLI_OUT >/dev/null
1506 then
Gilles Peskinef11d30e2021-10-19 18:00:10 +0200[diff] [blame]1507 outcome="RETRY(client-timeout)"
Gilles Peskine0e3534c2021-10-19 17:23:25 +0200[diff] [blame]1508 return
1509 fi
Manuel Pégourié-Gonnarda365add2015-08-04 20:57:59 +0200[diff] [blame]1510
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]1511 # check if the client and server went at least to the handshake stage
Paul Bakker1ebc0c52014-05-22 15:47:58 +0200[diff] [blame]1512 # (useful to avoid tests with only negative assertions and non-zero
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]1513 # expected client exit to incorrectly succeed in case of catastrophic
1514 # failure)
Jerry Yuc46e9b42021-08-06 11:22:24 +0800[diff] [blame]1515 if [ "X$SKIP_HANDSHAKE_CHECK" != "XYES" ]
1516 then
1517 if is_polar "$SRV_CMD"; then
1518 if grep "Performing the SSL/TLS handshake" $SRV_OUT >/dev/null; then :;
1519 else
1520 fail "server or client failed to reach handshake stage"
1521 return
1522 fi
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]1523 fi
Jerry Yuc46e9b42021-08-06 11:22:24 +0800[diff] [blame]1524 if is_polar "$CLI_CMD"; then
1525 if grep "Performing the SSL/TLS handshake" $CLI_OUT >/dev/null; then :;
1526 else
1527 fail "server or client failed to reach handshake stage"
1528 return
1529 fi
Manuel Pégourié-Gonnard677884d2014-02-25 16:42:31 +0100[diff] [blame]1530 fi
1531 fi
1532
Jerry Yuc46e9b42021-08-06 11:22:24 +0800[diff] [blame]1533 SKIP_HANDSHAKE_CHECK="NO"
Gilles Peskineaaf866e2021-02-09 21:01:33 +0100[diff] [blame]1534 # Check server exit code (only for Mbed TLS: GnuTLS and OpenSSL don't
1535 # exit with status 0 when interrupted by a signal, and we don't really
1536 # care anyway), in case e.g. the server reports a memory leak.
1537 if [ $SRV_RET != 0 ] && is_polar "$SRV_CMD"; then
Gilles Peskine7f919de2021-02-02 23:29:03 +0100[diff] [blame]1538 fail "Server exited with status $SRV_RET"
Manuel Pégourié-Gonnardf8bdbb52014-02-21 09:20:14 +0100[diff] [blame]1539 return
1540 fi
1541
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1542 # check client exit code
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]1543 if [ \( "$CLI_EXPECT" = 0 -a "$CLI_EXIT" != 0 \) -o \
1544 \( "$CLI_EXPECT" != 0 -a "$CLI_EXIT" = 0 \) ]
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]1545 then
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1546 fail "bad client exit code (expected $CLI_EXPECT, got $CLI_EXIT)"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1547 return
1548 fi
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1549
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1550 # check other assertions
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]1551 # lines beginning with == are added by valgrind, ignore them
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]1552 # lines with 'Serious error when reading debug info', are valgrind issues as well
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1553 while [ $# -gt 0 ]
1554 do
1555 case $1 in
1556 "-s")
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]1557 if grep -v '^==' $SRV_OUT | grep -v 'Serious error when reading debug info' | grep "$2" >/dev/null; then :; else
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]1558 fail "pattern '$2' MUST be present in the Server output"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1559 return
1560 fi
1561 ;;
1562
1563 "-c")
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]1564 if grep -v '^==' $CLI_OUT | grep -v 'Serious error when reading debug info' | grep "$2" >/dev/null; then :; else
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]1565 fail "pattern '$2' MUST be present in the Client output"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1566 return
1567 fi
1568 ;;
1569
1570 "-S")
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]1571 if grep -v '^==' $SRV_OUT | grep -v 'Serious error when reading debug info' | grep "$2" >/dev/null; then
Gilles Peskine788ad332021-10-20 14:17:02 +0200[diff] [blame]1572 if log_pattern_presence_is_conclusive "$2"; then
Gilles Peskinef11d30e2021-10-19 18:00:10 +0200[diff] [blame]1573 fail "pattern '$2' MUST NOT be present in the Server output"
1574 fi
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1575 return
1576 fi
1577 ;;
1578
1579 "-C")
Paul Bakker1f650922016-05-13 10:16:46 +0100[diff] [blame]1580 if grep -v '^==' $CLI_OUT | grep -v 'Serious error when reading debug info' | grep "$2" >/dev/null; then
Gilles Peskine788ad332021-10-20 14:17:02 +0200[diff] [blame]1581 if log_pattern_presence_is_conclusive "$2"; then
Gilles Peskinef11d30e2021-10-19 18:00:10 +0200[diff] [blame]1582 fail "pattern '$2' MUST NOT be present in the Client output"
1583 fi
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]1584 return
1585 fi
1586 ;;
1587
1588 # The filtering in the following two options (-u and -U) do the following
1589 # - ignore valgrind output
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]1590 # - filter out everything but lines right after the pattern occurrences
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]1591 # - keep one of each non-unique line
1592 # - count how many lines remain
1593 # A line with '--' will remain in the result from previous outputs, so the number of lines in the result will be 1
1594 # if there were no duplicates.
1595 "-U")
1596 if [ $(grep -v '^==' $SRV_OUT | grep -v 'Serious error when reading debug info' | grep -A1 "$2" | grep -v "$2" | sort | uniq -d | wc -l) -gt 1 ]; then
1597 fail "lines following pattern '$2' must be unique in Server output"
1598 return
1599 fi
1600 ;;
1601
1602 "-u")
1603 if [ $(grep -v '^==' $CLI_OUT | grep -v 'Serious error when reading debug info' | grep -A1 "$2" | grep -v "$2" | sort | uniq -d | wc -l) -gt 1 ]; then
1604 fail "lines following pattern '$2' must be unique in Client output"
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1605 return
1606 fi
1607 ;;
Andres Amaya Garcia93993de2017-09-06 15:38:07 +0100[diff] [blame]1608 "-F")
1609 if ! $2 "$SRV_OUT"; then
1610 fail "function call to '$2' failed on Server output"
1611 return
1612 fi
1613 ;;
1614 "-f")
1615 if ! $2 "$CLI_OUT"; then
1616 fail "function call to '$2' failed on Client output"
1617 return
1618 fi
1619 ;;
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]1620 "-g")
1621 if ! eval "$2 '$SRV_OUT' '$CLI_OUT'"; then
1622 fail "function call to '$2' failed on Server and Client output"
1623 return
1624 fi
1625 ;;
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1626
1627 *)
Paul Bakker1ebc0c52014-05-22 15:47:58 +0200[diff] [blame]1628 echo "Unknown test: $1" >&2
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1629 exit 1
1630 esac
1631 shift 2
1632 done
1633
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1634 # check valgrind's results
1635 if [ "$MEMCHECK" -gt 0 ]; then
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]1636 if is_polar "$SRV_CMD" && has_mem_err $SRV_OUT; then
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1637 fail "Server has memory errors"
1638 return
1639 fi
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]1640 if is_polar "$CLI_CMD" && has_mem_err $CLI_OUT; then
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]1641 fail "Client has memory errors"
1642 return
1643 fi
1644 fi
1645
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1646 # if we're here, everything is ok
Gilles Peskine0e3534c2021-10-19 17:23:25 +0200[diff] [blame]1647 outcome=PASS
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1648}
1649
Gilles Peskine196d73b2021-10-19 16:35:35 +0200[diff] [blame]1650# Run the current test case: start the server and if applicable the proxy, run
1651# the client, wait for all processes to finish or time out.
1652#
1653# Inputs:
1654# * $NAME: test case name
1655# * $CLI_CMD, $SRV_CMD, $PXY_CMD: commands to run
1656# * $CLI_OUT, $SRV_OUT, $PXY_OUT: files to contain client/server/proxy logs
1657#
1658# Outputs:
1659# * $CLI_EXIT: client return code
1660# * $SRV_RET: server return code
1661do_run_test_once() {
1662 # run the commands
1663 if [ -n "$PXY_CMD" ]; then
1664 printf "# %s\n%s\n" "$NAME" "$PXY_CMD" > $PXY_OUT
1665 $PXY_CMD >> $PXY_OUT 2>&1 &
1666 PXY_PID=$!
1667 wait_proxy_start "$PXY_PORT" "$PXY_PID"
1668 fi
1669
1670 check_osrv_dtls
1671 printf '# %s\n%s\n' "$NAME" "$SRV_CMD" > $SRV_OUT
1672 provide_input | $SRV_CMD >> $SRV_OUT 2>&1 &
1673 SRV_PID=$!
Gilles Peskine6c798ef2024-09-04 16:05:11 +0200[diff] [blame]1674 wait_server_start "$THIS_SRV_PORT" "$SRV_PID"
Gilles Peskine196d73b2021-10-19 16:35:35 +0200[diff] [blame]1675
1676 printf '# %s\n%s\n' "$NAME" "$CLI_CMD" > $CLI_OUT
Andrzej Kurek140b5892022-05-27 06:44:19 -0400[diff] [blame]1677 # The client must be a subprocess of the script in order for killing it to
1678 # work properly, that's why the ampersand is placed inside the eval command,
1679 # not at the end of the line: the latter approach will spawn eval as a
1680 # subprocess, and the $CLI_CMD as a grandchild.
1681 eval "$CLI_CMD &" >> $CLI_OUT 2>&1
Gilles Peskine196d73b2021-10-19 16:35:35 +0200[diff] [blame]1682 wait_client_done
1683
1684 sleep 0.05
1685
1686 # terminate the server (and the proxy)
1687 kill $SRV_PID
Jerry Yud2d41102022-07-26 17:34:42 +0800[diff] [blame]1688 # For Ubuntu 22.04, `Terminated` message is outputed by wait command.
Jerry Yu27d80922022-08-02 21:28:55 +0800[diff] [blame]1689 # To remove it from stdout, redirect stdout/stderr to SRV_OUT
Jerry Yud2d41102022-07-26 17:34:42 +0800[diff] [blame]1690 wait $SRV_PID >> $SRV_OUT 2>&1
Gilles Peskine196d73b2021-10-19 16:35:35 +0200[diff] [blame]1691 SRV_RET=$?
1692
1693 if [ -n "$PXY_CMD" ]; then
1694 kill $PXY_PID >/dev/null 2>&1
Jerry Yu6969eee2022-10-10 10:25:26 +0800[diff] [blame]1695 wait $PXY_PID >> $PXY_OUT 2>&1
Gilles Peskine196d73b2021-10-19 16:35:35 +0200[diff] [blame]1696 fi
1697}
1698
Ronald Cron097ba142023-03-08 16:18:00 +0100[diff] [blame]1699# Detect if the current test is going to use TLS 1.3 or TLS 1.2.
Valerio Setti194e2bd2023-03-02 17:18:10 +0100[diff] [blame]1700# $1 and $2 contain the server and client command lines, respectively.
Valerio Setti213c4ea2023-03-07 19:29:57 +0100[diff] [blame]1701#
1702# Note: this function only provides some guess about TLS version by simply
Yanray Wang7b320fa2023-11-08 10:33:30 +0800[diff] [blame]1703# looking at the server/client command lines. Even though this works
Valerio Setti213c4ea2023-03-07 19:29:57 +0100[diff] [blame]1704# for the sake of tests' filtering (especially in conjunction with the
1705# detect_required_features() function), it does NOT guarantee that the
1706# result is accurate. It does not check other conditions, such as:
Valerio Setti213c4ea2023-03-07 19:29:57 +0100[diff] [blame]1707# - we can force a ciphersuite which contains "WITH" in its name, meaning
1708# that we are going to use TLS 1.2
1709# - etc etc
Valerio Setti1af76d12023-02-23 15:55:10 +0100[diff] [blame]1710get_tls_version() {
Ronald Cron097ba142023-03-08 16:18:00 +0100[diff] [blame]1711 # First check if the version is forced on an Mbed TLS peer
Valerio Setti1af76d12023-02-23 15:55:10 +0100[diff] [blame]1712 case $1 in
Ronald Cron097ba142023-03-08 16:18:00 +0100[diff] [blame]1713 *tls12*)
1714 echo "TLS12"
1715 return;;
1716 *tls13*)
Valerio Setti1af76d12023-02-23 15:55:10 +0100[diff] [blame]1717 echo "TLS13"
1718 return;;
1719 esac
1720 case $2 in
Ronald Cron097ba142023-03-08 16:18:00 +0100[diff] [blame]1721 *tls12*)
1722 echo "TLS12"
1723 return;;
1724 *tls13*)
Valerio Setti1af76d12023-02-23 15:55:10 +0100[diff] [blame]1725 echo "TLS13"
1726 return;;
1727 esac
Ronald Cron097ba142023-03-08 16:18:00 +0100[diff] [blame]1728 # Second check if the version is forced on an OpenSSL or GnuTLS peer
1729 case $1 in
1730 tls1_2*)
1731 echo "TLS12"
1732 return;;
1733 *tls1_3)
1734 echo "TLS13"
1735 return;;
1736 esac
1737 case $2 in
1738 *tls1_2)
1739 echo "TLS12"
1740 return;;
1741 *tls1_3)
1742 echo "TLS13"
1743 return;;
1744 esac
1745 # Third if the version is not forced, if TLS 1.3 is enabled then the test
1746 # is aimed to run a TLS 1.3 handshake.
Gilles Peskine0bc57292024-09-06 14:43:17 +0200[diff] [blame]1747 if is_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron097ba142023-03-08 16:18:00 +0100[diff] [blame]1748 then
1749 echo "TLS13"
1750 else
1751 echo "TLS12"
1752 fi
Valerio Setti1af76d12023-02-23 15:55:10 +0100[diff] [blame]1753}
1754
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1755# Usage: run_test name [-p proxy_cmd] srv_cmd cli_cmd cli_exit [option [...]]
1756# Options: -s pattern pattern that must be present in server output
1757# -c pattern pattern that must be present in client output
1758# -u pattern lines after pattern must be unique in client output
1759# -f call shell function on client output
1760# -S pattern pattern that must be absent in server output
1761# -C pattern pattern that must be absent in client output
1762# -U pattern lines after pattern must be unique in server output
1763# -F call shell function on server output
1764# -g call shell function on server and client output
1765run_test() {
1766 NAME="$1"
1767 shift 1
1768
Tomás González787428a2023-08-23 15:27:19 +0100[diff] [blame]1769 if is_excluded "$NAME"; then
1770 SKIP_NEXT="NO"
1771 # There was no request to run the test, so don't record its outcome.
1772 return
1773 fi
1774
Tomás González37a87392023-09-01 11:25:44 +0100[diff] [blame]1775 if [ "$LIST_TESTS" -gt 0 ]; then
Pengyu Lv3c170d32023-11-29 13:53:34 +0800[diff] [blame]1776 printf "%s\n" "${TEST_SUITE_NAME:-ssl-opt};$NAME"
Tomás González37a87392023-09-01 11:25:44 +0100[diff] [blame]1777 return
1778 fi
1779
Jerry Yu50d07bd2023-11-06 10:49:01 +0800[diff] [blame]1780 # Use ssl-opt as default test suite name. Also see record_outcome function
1781 if is_excluded_test_suite "${TEST_SUITE_NAME:-ssl-opt}"; then
1782 # Do not skip next test and skip current test.
1783 SKIP_NEXT="NO"
1784 return
1785 fi
1786
Tomás González51cb7042023-09-07 10:21:19 +0100[diff] [blame]1787 print_name "$NAME"
1788
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1789 # Do we only run numbered tests?
1790 if [ -n "$RUN_TEST_NUMBER" ]; then
1791 case ",$RUN_TEST_NUMBER," in
1792 *",$TESTS,"*) :;;
1793 *) SKIP_NEXT="YES";;
1794 esac
1795 fi
1796
Gilles Peskinef8b373e2024-09-04 16:07:56 +0200[diff] [blame]1797 # Does this test specify a proxy?
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1798 if [ "X$1" = "X-p" ]; then
1799 PXY_CMD="$2"
1800 shift 2
1801 else
1802 PXY_CMD=""
1803 fi
1804
Gilles Peskine6c798ef2024-09-04 16:05:11 +0200[diff] [blame]1805 # Does this test force a specific port?
1806 if [ "$1" = "-P" ]; then
1807 THIS_SRV_PORT="$2"
1808 shift 2
1809 else
1810 THIS_SRV_PORT="$SRV_PORT"
1811 fi
1812
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1813 # get commands and client output
1814 SRV_CMD="$1"
1815 CLI_CMD="$2"
1816 CLI_EXPECT="$3"
1817 shift 3
1818
1819 # Check if test uses files
1820 case "$SRV_CMD $CLI_CMD" in
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]1821 *$DATA_FILES_PATH/*)
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1822 requires_config_enabled MBEDTLS_FS_IO;;
1823 esac
1824
Gilles Peskine82a4ab22022-02-25 19:46:30 +0100[diff] [blame]1825 # Check if the test uses DTLS.
1826 detect_dtls "$SRV_CMD"
1827 if [ "$DTLS" -eq 1 ]; then
1828 requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
1829 fi
1830
Yanray Wang7b320fa2023-11-08 10:33:30 +0800[diff] [blame]1831 # Check if we are trying to use an external tool which does not support ECDH
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]1832 EXT_WO_ECDH=$(use_ext_tool_without_ecdh_support "$SRV_CMD" "$CLI_CMD")
1833
Gilles Peskine927f2f12024-09-11 21:03:05 +0200[diff] [blame]1834 # Guess the TLS version which is going to be used.
1835 # Note that this detection is wrong in some cases, which causes unduly
1836 # skipped test cases in builds with TLS 1.3 but not TLS 1.2.
1837 # https://github.com/Mbed-TLS/mbedtls/issues/9560
Valerio Setti726ffbf2023-08-02 20:02:44 +0200[diff] [blame]1838 if [ "$EXT_WO_ECDH" = "no" ]; then
1839 TLS_VERSION=$(get_tls_version "$SRV_CMD" "$CLI_CMD")
1840 else
1841 TLS_VERSION="TLS12"
1842 fi
1843
Gilles Peskine5c766dc2024-09-06 15:35:58 +0200[diff] [blame]1844 # If we're in a PSK-only build and the test can be adapted to PSK, do that.
1845 maybe_adapt_for_psk "$@"
1846
Valerio Setti726ffbf2023-08-02 20:02:44 +0200[diff] [blame]1847 # If the client or server requires certain features that can be detected
Manuel Pégourié-Gonnardf299efd2023-09-18 11:19:04 +0200[diff] [blame]1848 # from their command-line arguments, check whether they're enabled.
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]1849 detect_required_features "$SRV_CMD" "server" "$TLS_VERSION" "$EXT_WO_ECDH" "$@"
1850 detect_required_features "$CLI_CMD" "client" "$TLS_VERSION" "$EXT_WO_ECDH" "$@"
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1851
1852 # should we skip?
1853 if [ "X$SKIP_NEXT" = "XYES" ]; then
1854 SKIP_NEXT="NO"
1855 record_outcome "SKIP"
1856 SKIPS=$(( $SKIPS + 1 ))
1857 return
1858 fi
1859
1860 analyze_test_commands "$@"
1861
Andrzej Kurek8db7c0e2022-04-01 08:52:06 -0400[diff] [blame]1862 # One regular run and two retries
1863 TIMES_LEFT=3
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1864 while [ $TIMES_LEFT -gt 0 ]; do
1865 TIMES_LEFT=$(( $TIMES_LEFT - 1 ))
1866
Gilles Peskine196d73b2021-10-19 16:35:35 +0200[diff] [blame]1867 do_run_test_once
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1868
Gilles Peskine0e3534c2021-10-19 17:23:25 +0200[diff] [blame]1869 check_test_failure "$@"
1870 case $outcome in
1871 PASS) break;;
Gilles Peskinef11d30e2021-10-19 18:00:10 +0200[diff] [blame]1872 RETRY*) printf "$outcome ";;
Gilles Peskine0e3534c2021-10-19 17:23:25 +0200[diff] [blame]1873 FAIL) return;;
1874 esac
Gilles Peskine236bf982021-10-19 16:25:10 +0200[diff] [blame]1875 done
1876
Gilles Peskine0e3534c2021-10-19 17:23:25 +0200[diff] [blame]1877 # If we get this far, the test case passed.
Gilles Peskine560280b2019-09-16 15:17:38 +0200[diff] [blame]1878 record_outcome "PASS"
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]1879 if [ "$PRESERVE_LOGS" -gt 0 ]; then
1880 mv $SRV_OUT o-srv-${TESTS}.log
1881 mv $CLI_OUT o-cli-${TESTS}.log
Hanno Becker7be2e5b2018-08-20 12:21:35 +0100[diff] [blame]1882 if [ -n "$PXY_CMD" ]; then
1883 mv $PXY_OUT o-pxy-${TESTS}.log
1884 fi
Paul Bakkeracaac852016-05-10 11:47:13 +0100[diff] [blame]1885 fi
1886
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1887 rm -f $SRV_OUT $CLI_OUT $PXY_OUT
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1888}
1889
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]1890run_test_psa() {
1891 requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1892 set_maybe_calc_verify none
Hanno Beckere9420c22018-11-20 11:37:34 +0000[diff] [blame]1893 run_test "PSA-supported ciphersuite: $1" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]1894 "$P_SRV debug_level=3 force_version=tls12" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]1895 "$P_CLI debug_level=3 force_ciphersuite=$1" \
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]1896 0 \
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1897 -c "$maybe_calc_verify" \
Andrzej Kurek92dd4d02019-01-30 04:10:19 -0500[diff] [blame]1898 -c "calc PSA finished" \
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1899 -s "$maybe_calc_verify" \
Andrzej Kurek92dd4d02019-01-30 04:10:19 -0500[diff] [blame]1900 -s "calc PSA finished" \
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]1901 -s "Protocol is TLSv1.2" \
Hanno Becker28f78442019-02-18 16:47:50 +0000[diff] [blame]1902 -c "Perform PSA-based ECDH computation."\
Andrzej Kureke85414e2019-01-15 05:23:59 -0500[diff] [blame]1903 -c "Perform PSA-based computation of digest of ServerKeyExchange" \
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]1904 -S "error" \
1905 -C "error"
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1906 unset maybe_calc_verify
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]1907}
1908
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]1909run_test_psa_force_curve() {
1910 requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1911 set_maybe_calc_verify none
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]1912 run_test "PSA - ECDH with $1" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]1913 "$P_SRV debug_level=4 force_version=tls12 groups=$1" \
1914 "$P_CLI debug_level=4 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256 groups=$1" \
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]1915 0 \
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1916 -c "$maybe_calc_verify" \
Hanno Becker28f78442019-02-18 16:47:50 +0000[diff] [blame]1917 -c "calc PSA finished" \
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1918 -s "$maybe_calc_verify" \
Hanno Becker28f78442019-02-18 16:47:50 +0000[diff] [blame]1919 -s "calc PSA finished" \
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]1920 -s "Protocol is TLSv1.2" \
Hanno Becker28f78442019-02-18 16:47:50 +0000[diff] [blame]1921 -c "Perform PSA-based ECDH computation."\
Manuel Pégourié-Gonnarda9062e92014-02-25 16:21:22 +0100[diff] [blame]1922 -c "Perform PSA-based computation of digest of ServerKeyExchange" \
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]1923 -S "error" \
Manuel Pégourié-Gonnarda6189f02014-09-20 13:15:43 +0200[diff] [blame]1924 -C "error"
Gilles Peskine309ca652022-03-14 17:55:04 +0100[diff] [blame]1925 unset maybe_calc_verify
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]1926}
1927
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1928# Test that the server's memory usage after a handshake is reduced when a client specifies
1929# a maximum fragment length.
1930# first argument ($1) is MFL for SSL client
1931# second argument ($2) is memory usage for SSL client with default MFL (16k)
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]1932run_test_memory_after_handshake_with_mfl()
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1933{
1934 # The test passes if the difference is around 2*(16k-MFL)
Gilles Peskine5b428d72020-08-26 21:52:23 +0200[diff] [blame]1935 MEMORY_USAGE_LIMIT="$(( $2 - ( 2 * ( 16384 - $1 )) ))"
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1936
1937 # Leave some margin for robustness
1938 MEMORY_USAGE_LIMIT="$(( ( MEMORY_USAGE_LIMIT * 110 ) / 100 ))"
1939
1940 run_test "Handshake memory usage (MFL $1)" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]1941 "$P_SRV debug_level=3 auth_mode=required force_version=tls12" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]1942 "$P_CLI debug_level=3 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]1943 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1944 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM max_frag_len=$1" \
1945 0 \
1946 -F "handshake_memory_check $MEMORY_USAGE_LIMIT"
1947}
1948
1949
1950# Test that the server's memory usage after a handshake is reduced when a client specifies
1951# different values of Maximum Fragment Length: default (16k), 4k, 2k, 1k and 512 bytes
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]1952run_tests_memory_after_handshake()
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1953{
1954 # all tests in this sequence requires the same configuration (see requires_config_enabled())
1955 SKIP_THIS_TESTS="$SKIP_NEXT"
1956
1957 # first test with default MFU is to get reference memory usage
1958 MEMORY_USAGE_MFL_16K=0
1959 run_test "Handshake memory usage initial (MFL 16384 - default)" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]1960 "$P_SRV debug_level=3 auth_mode=required force_version=tls12" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]1961 "$P_CLI debug_level=3 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]1962 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1963 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM" \
1964 0 \
1965 -F "handshake_memory_get MEMORY_USAGE_MFL_16K"
1966
1967 SKIP_NEXT="$SKIP_THIS_TESTS"
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]1968 run_test_memory_after_handshake_with_mfl 4096 "$MEMORY_USAGE_MFL_16K"
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1969
1970 SKIP_NEXT="$SKIP_THIS_TESTS"
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]1971 run_test_memory_after_handshake_with_mfl 2048 "$MEMORY_USAGE_MFL_16K"
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1972
1973 SKIP_NEXT="$SKIP_THIS_TESTS"
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]1974 run_test_memory_after_handshake_with_mfl 1024 "$MEMORY_USAGE_MFL_16K"
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1975
1976 SKIP_NEXT="$SKIP_THIS_TESTS"
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]1977 run_test_memory_after_handshake_with_mfl 512 "$MEMORY_USAGE_MFL_16K"
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]1978}
1979
Manuel Pégourié-Gonnarda9062e92014-02-25 16:21:22 +0100[diff] [blame]1980cleanup() {
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]1981 rm -f $CLI_OUT $SRV_OUT $PXY_OUT $SESSION
Piotr Nowicki3de298f2020-04-16 14:35:19 +0200[diff] [blame]1982 rm -f context_srv.txt
1983 rm -f context_cli.txt
Manuel Pégourié-Gonnarda6189f02014-09-20 13:15:43 +0200[diff] [blame]1984 test -n "${SRV_PID:-}" && kill $SRV_PID >/dev/null 2>&1
1985 test -n "${PXY_PID:-}" && kill $PXY_PID >/dev/null 2>&1
1986 test -n "${CLI_PID:-}" && kill $CLI_PID >/dev/null 2>&1
1987 test -n "${DOG_PID:-}" && kill $DOG_PID >/dev/null 2>&1
Manuel Pégourié-Gonnarda9062e92014-02-25 16:21:22 +0100[diff] [blame]1988 exit 1
1989}
1990
Manuel Pégourié-Gonnard9dea8bd2014-02-26 18:21:02 +0100[diff] [blame]1991#
1992# MAIN
1993#
1994
Yanray Wang5b33f642023-02-28 11:56:59 +0800[diff] [blame]1995# Make the outcome file path relative to the original directory, not
1996# to .../tests
1997case "$MBEDTLS_TEST_OUTCOME_FILE" in
1998 [!/]*)
1999 MBEDTLS_TEST_OUTCOME_FILE="$ORIGINAL_PWD/$MBEDTLS_TEST_OUTCOME_FILE"
2000 ;;
2001esac
2002
Andrzej Kurek9c061a22022-09-05 10:51:19 -0400[diff] [blame]2003populate_enabled_hash_algs
2004
Gilles Peskine9fa4ed62020-08-26 22:35:46 +0200[diff] [blame]2005# Optimize filters: if $FILTER and $EXCLUDE can be expressed as shell
2006# patterns rather than regular expressions, use a case statement instead
2007# of calling grep. To keep the optimizer simple, it is incomplete and only
2008# detects simple cases: plain substring, everything, nothing.
2009#
2010# As an exception, the character '.' is treated as an ordinary character
2011# if it is the only special character in the string. This is because it's
2012# rare to need "any one character", but needing a literal '.' is common
2013# (e.g. '-f "DTLS 1.2"').
2014need_grep=
2015case "$FILTER" in
2016 '^$') simple_filter=;;
2017 '.*') simple_filter='*';;
Gilles Peskineb09e0012020-09-29 23:48:39 +0200[diff] [blame]2018 *[][$+*?\\^{\|}]*) # Regexp special characters (other than .), we need grep
Gilles Peskine9fa4ed62020-08-26 22:35:46 +0200[diff] [blame]2019 need_grep=1;;
2020 *) # No regexp or shell-pattern special character
2021 simple_filter="*$FILTER*";;
2022esac
2023case "$EXCLUDE" in
2024 '^$') simple_exclude=;;
2025 '.*') simple_exclude='*';;
Gilles Peskineb09e0012020-09-29 23:48:39 +0200[diff] [blame]2026 *[][$+*?\\^{\|}]*) # Regexp special characters (other than .), we need grep
Gilles Peskine9fa4ed62020-08-26 22:35:46 +0200[diff] [blame]2027 need_grep=1;;
2028 *) # No regexp or shell-pattern special character
2029 simple_exclude="*$EXCLUDE*";;
2030esac
2031if [ -n "$need_grep" ]; then
2032 is_excluded () {
2033 ! echo "$1" | grep "$FILTER" | grep -q -v "$EXCLUDE"
2034 }
2035else
2036 is_excluded () {
2037 case "$1" in
2038 $simple_exclude) true;;
2039 $simple_filter) false;;
2040 *) true;;
2041 esac
2042 }
2043fi
2044
Jerry Yu50d07bd2023-11-06 10:49:01 +0800[diff] [blame]2045# Filter tests according to TEST_SUITE_NAME
2046is_excluded_test_suite () {
2047 if [ -n "$RUN_TEST_SUITE" ]
2048 then
2049 case ",$RUN_TEST_SUITE," in
2050 *",$1,"*) false;;
2051 *) true;;
2052 esac
2053 else
2054 false
2055 fi
2056
2057}
2058
2059
Tomás González06956a12023-08-23 15:46:20 +0100[diff] [blame]2060if [ "$LIST_TESTS" -eq 0 ];then
2061
2062 # sanity checks, avoid an avalanche of errors
2063 P_SRV_BIN="${P_SRV%%[ ]*}"
2064 P_CLI_BIN="${P_CLI%%[ ]*}"
2065 P_PXY_BIN="${P_PXY%%[ ]*}"
2066 if [ ! -x "$P_SRV_BIN" ]; then
2067 echo "Command '$P_SRV_BIN' is not an executable file"
Simon Butcher3c0d7b82016-05-23 11:13:17 +0100[diff] [blame]2068 exit 1
2069 fi
Tomás González06956a12023-08-23 15:46:20 +0100[diff] [blame]2070 if [ ! -x "$P_CLI_BIN" ]; then
2071 echo "Command '$P_CLI_BIN' is not an executable file"
2072 exit 1
2073 fi
2074 if [ ! -x "$P_PXY_BIN" ]; then
2075 echo "Command '$P_PXY_BIN' is not an executable file"
2076 exit 1
2077 fi
2078 if [ "$MEMCHECK" -gt 0 ]; then
2079 if which valgrind >/dev/null 2>&1; then :; else
2080 echo "Memcheck not possible. Valgrind not found"
2081 exit 1
2082 fi
2083 fi
2084 if which $OPENSSL >/dev/null 2>&1; then :; else
2085 echo "Command '$OPENSSL' not found"
2086 exit 1
2087 fi
2088
2089 # used by watchdog
2090 MAIN_PID="$$"
2091
2092 # We use somewhat arbitrary delays for tests:
2093 # - how long do we wait for the server to start (when lsof not available)?
2094 # - how long do we allow for the client to finish?
2095 # (not to check performance, just to avoid waiting indefinitely)
2096 # Things are slower with valgrind, so give extra time here.
2097 #
2098 # Note: without lsof, there is a trade-off between the running time of this
2099 # script and the risk of spurious errors because we didn't wait long enough.
2100 # The watchdog delay on the other hand doesn't affect normal running time of
2101 # the script, only the case where a client or server gets stuck.
2102 if [ "$MEMCHECK" -gt 0 ]; then
2103 START_DELAY=6
2104 DOG_DELAY=60
2105 else
2106 START_DELAY=2
2107 DOG_DELAY=20
2108 fi
2109
2110 # some particular tests need more time:
2111 # - for the client, we multiply the usual watchdog limit by a factor
2112 # - for the server, we sleep for a number of seconds after the client exits
2113 # see client_need_more_time() and server_needs_more_time()
2114 CLI_DELAY_FACTOR=1
2115 SRV_DELAY_SECONDS=0
2116
2117 # fix commands to use this port, force IPv4 while at it
2118 # +SRV_PORT will be replaced by either $SRV_PORT or $PXY_PORT later
2119 # Note: Using 'localhost' rather than 127.0.0.1 here is unwise, as on many
2120 # machines that will resolve to ::1, and we don't want ipv6 here.
2121 P_SRV="$P_SRV server_addr=127.0.0.1 server_port=$SRV_PORT"
2122 P_CLI="$P_CLI server_addr=127.0.0.1 server_port=+SRV_PORT"
2123 P_PXY="$P_PXY server_addr=127.0.0.1 server_port=$SRV_PORT listen_addr=127.0.0.1 listen_port=$PXY_PORT ${SEED:+"seed=$SEED"}"
2124 O_SRV="$O_SRV -accept $SRV_PORT"
2125 O_CLI="$O_CLI -connect 127.0.0.1:+SRV_PORT"
2126 G_SRV="$G_SRV -p $SRV_PORT"
2127 G_CLI="$G_CLI -p +SRV_PORT"
2128
2129 # Newer versions of OpenSSL have a syntax to enable all "ciphers", even
2130 # low-security ones. This covers not just cipher suites but also protocol
2131 # versions. It is necessary, for example, to use (D)TLS 1.0/1.1 on
2132 # OpenSSL 1.1.1f from Ubuntu 20.04. The syntax was only introduced in
2133 # OpenSSL 1.1.0 (21e0c1d23afff48601eb93135defddae51f7e2e3) and I can't find
2134 # a way to discover it from -help, so check the openssl version.
2135 case $($OPENSSL version) in
2136 "OpenSSL 0"*|"OpenSSL 1.0"*) :;;
2137 *)
2138 O_CLI="$O_CLI -cipher ALL@SECLEVEL=0"
2139 O_SRV="$O_SRV -cipher ALL@SECLEVEL=0"
2140 ;;
2141 esac
2142
2143 if [ -n "${OPENSSL_NEXT:-}" ]; then
2144 O_NEXT_SRV="$O_NEXT_SRV -accept $SRV_PORT"
2145 O_NEXT_SRV_NO_CERT="$O_NEXT_SRV_NO_CERT -accept $SRV_PORT"
2146 O_NEXT_SRV_EARLY_DATA="$O_NEXT_SRV_EARLY_DATA -accept $SRV_PORT"
2147 O_NEXT_CLI="$O_NEXT_CLI -connect 127.0.0.1:+SRV_PORT"
2148 O_NEXT_CLI_NO_CERT="$O_NEXT_CLI_NO_CERT -connect 127.0.0.1:+SRV_PORT"
2149 fi
2150
2151 if [ -n "${GNUTLS_NEXT_SERV:-}" ]; then
2152 G_NEXT_SRV="$G_NEXT_SRV -p $SRV_PORT"
2153 G_NEXT_SRV_NO_CERT="$G_NEXT_SRV_NO_CERT -p $SRV_PORT"
2154 fi
2155
2156 if [ -n "${GNUTLS_NEXT_CLI:-}" ]; then
2157 G_NEXT_CLI="$G_NEXT_CLI -p +SRV_PORT"
2158 G_NEXT_CLI_NO_CERT="$G_NEXT_CLI_NO_CERT -p +SRV_PORT localhost"
2159 fi
2160
2161 # Allow SHA-1, because many of our test certificates use it
2162 P_SRV="$P_SRV allow_sha1=1"
2163 P_CLI="$P_CLI allow_sha1=1"
2164
Simon Butcher3c0d7b82016-05-23 11:13:17 +0100[diff] [blame]2165fi
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]2166# Also pick a unique name for intermediate files
2167SRV_OUT="srv_out.$$"
2168CLI_OUT="cli_out.$$"
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]2169PXY_OUT="pxy_out.$$"
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]2170SESSION="session.$$"
2171
Manuel Pégourié-Gonnard6f4fbbb2014-08-14 14:31:29 +0200[diff] [blame]2172SKIP_NEXT="NO"
2173
Manuel Pégourié-Gonnarda9062e92014-02-25 16:21:22 +0100[diff] [blame]2174trap cleanup INT TERM HUP
Manuel Pégourié-Gonnardeaadc502014-02-20 11:01:30 +0100[diff] [blame]2175
Manuel Pégourié-Gonnarde73b2632014-07-12 04:00:00 +0200[diff] [blame]2176# Basic test
2177
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]2178# Checks that:
2179# - things work with all ciphersuites active (used with config-full in all.sh)
Gilles Peskine799eee62021-06-02 22:14:15 +0200[diff] [blame]2180# - the expected parameters are selected
Gilles Peskine35615262022-02-25 19:50:38 +0100[diff] [blame]2181requires_ciphersuite_enabled TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2182requires_hash_alg SHA_512 # "signature_algorithm ext: 6"
Gilles Peskine07e24e92024-09-07 19:50:17 +0200[diff] [blame]2183requires_any_configs_enabled MBEDTLS_ECP_DP_CURVE25519_ENABLED \
2184 PSA_WANT_ECC_MONTGOMERY_255
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2185run_test "Default, TLS 1.2" \
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]2186 "$P_SRV debug_level=3" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2187 "$P_CLI force_version=tls12" \
Manuel Pégourié-Gonnarde73b2632014-07-12 04:00:00 +0200[diff] [blame]2188 0 \
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]2189 -s "Protocol is TLSv1.2" \
Manuel Pégourié-Gonnardce66d5e2018-06-14 11:11:15 +0200[diff] [blame]2190 -s "Ciphersuite is TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256" \
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]2191 -s "client hello v3, signature_algorithm ext: 6" \
Gilles Peskine799eee62021-06-02 22:14:15 +0200[diff] [blame]2192 -s "ECDHE curve: x25519" \
Manuel Pégourié-Gonnard480905d2014-08-21 19:38:32 +0200[diff] [blame]2193 -S "error" \
2194 -C "error"
Manuel Pégourié-Gonnarde73b2632014-07-12 04:00:00 +0200[diff] [blame]2195
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]2196requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine35615262022-02-25 19:50:38 +0100[diff] [blame]2197requires_ciphersuite_enabled TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256
Manuel Pégourié-Gonnard3bb08012015-01-22 13:34:21 +0000[diff] [blame]2198run_test "Default, DTLS" \
2199 "$P_SRV dtls=1" \
2200 "$P_CLI dtls=1" \
2201 0 \
2202 -s "Protocol is DTLSv1.2" \
Manuel Pégourié-Gonnardce66d5e2018-06-14 11:11:15 +0200[diff] [blame]2203 -s "Ciphersuite is TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256"
Manuel Pégourié-Gonnard3bb08012015-01-22 13:34:21 +0000[diff] [blame]2204
Hanno Becker721f7c12020-08-17 12:17:32 +0100[diff] [blame]2205run_test "TLS client auth: required" \
2206 "$P_SRV auth_mode=required" \
2207 "$P_CLI" \
2208 0 \
2209 -s "Verifying peer X.509 certificate... ok"
2210
Glenn Strauss6eef5632022-01-23 08:37:02 -0500[diff] [blame]2211run_test "key size: TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
2212 "$P_SRV" \
2213 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
2214 0 \
2215 -c "Ciphersuite is TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
2216 -c "Key size is 256"
2217
2218run_test "key size: TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2219 "$P_SRV" \
2220 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2221 0 \
2222 -c "Ciphersuite is TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2223 -c "Key size is 128"
2224
Hanno Becker2f54a3c2020-08-17 12:14:06 +0100[diff] [blame]2225requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Valerio Settidd43d7b2023-11-09 14:10:51 +0100[diff] [blame]2226# server5.key.enc is in PEM format and AES-256-CBC crypted. Unfortunately PEM
2227# module does not support PSA dispatching so we need builtin support.
2228requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
2229requires_config_enabled MBEDTLS_AES_C
Sam Berry06b91be2024-06-19 11:43:03 +0100[diff] [blame]2230requires_hash_alg MD5
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2231requires_hash_alg SHA_256
Hanno Becker2f54a3c2020-08-17 12:14:06 +0100[diff] [blame]2232run_test "TLS: password protected client key" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2233 "$P_SRV force_version=tls12 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2234 "$P_CLI crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key.enc key_pwd=PolarSSLTest" \
Hanno Becker2f54a3c2020-08-17 12:14:06 +0100[diff] [blame]2235 0
2236
2237requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Valerio Settidd43d7b2023-11-09 14:10:51 +0100[diff] [blame]2238# server5.key.enc is in PEM format and AES-256-CBC crypted. Unfortunately PEM
2239# module does not support PSA dispatching so we need builtin support.
2240requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
2241requires_config_enabled MBEDTLS_AES_C
Sam Berry06b91be2024-06-19 11:43:03 +0100[diff] [blame]2242requires_hash_alg MD5
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2243requires_hash_alg SHA_256
Hanno Becker2f54a3c2020-08-17 12:14:06 +0100[diff] [blame]2244run_test "TLS: password protected server key" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2245 "$P_SRV crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key.enc key_pwd=PolarSSLTest" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2246 "$P_CLI force_version=tls12" \
Hanno Becker2f54a3c2020-08-17 12:14:06 +0100[diff] [blame]2247 0
2248
2249requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Hanno Becker2f54a3c2020-08-17 12:14:06 +0100[diff] [blame]2250requires_config_enabled MBEDTLS_RSA_C
Valerio Settidd43d7b2023-11-09 14:10:51 +0100[diff] [blame]2251# server5.key.enc is in PEM format and AES-256-CBC crypted. Unfortunately PEM
2252# module does not support PSA dispatching so we need builtin support.
2253requires_config_enabled MBEDTLS_CIPHER_MODE_CBC
2254requires_config_enabled MBEDTLS_AES_C
Sam Berry06b91be2024-06-19 11:43:03 +0100[diff] [blame]2255requires_hash_alg MD5
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2256requires_hash_alg SHA_256
Hanno Becker2f54a3c2020-08-17 12:14:06 +0100[diff] [blame]2257run_test "TLS: password protected server key, two certificates" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2258 "$P_SRV force_version=tls12\
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2259 key_file=$DATA_FILES_PATH/server5.key.enc key_pwd=PolarSSLTest crt_file=$DATA_FILES_PATH/server5.crt \
2260 key_file2=$DATA_FILES_PATH/server2.key.enc key_pwd2=PolarSSLTest crt_file2=$DATA_FILES_PATH/server2.crt" \
Hanno Becker2f54a3c2020-08-17 12:14:06 +0100[diff] [blame]2261 "$P_CLI" \
2262 0
2263
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]2264run_test "CA callback on client" \
2265 "$P_SRV debug_level=3" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]2266 "$P_CLI ca_callback=1 debug_level=3 " \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]2267 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]2268 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]2269 -S "error" \
2270 -C "error"
2271
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]2272requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2273requires_hash_alg SHA_256
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]2274run_test "CA callback on server" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]2275 "$P_SRV auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2276 "$P_CLI ca_callback=1 debug_level=3 crt_file=$DATA_FILES_PATH/server5.crt \
2277 key_file=$DATA_FILES_PATH/server5.key" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]2278 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]2279 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]2280 -s "Verifying peer X.509 certificate... ok" \
2281 -S "error" \
2282 -C "error"
2283
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2284# Test using an EC opaque private key for client authentication
Manuel Pégourié-Gonnardcfdf8f42018-11-08 09:52:25 +0100[diff] [blame]2285requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2286requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]2287requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2288requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2289run_test "Opaque key for client authentication: ECDHE-ECDSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2290 "$P_SRV force_version=tls12 auth_mode=required crt_file=$DATA_FILES_PATH/server5.crt \
2291 key_file=$DATA_FILES_PATH/server5.key" \
2292 "$P_CLI key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2293 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=ecdsa-sign,none" \
Manuel Pégourié-Gonnardcfdf8f42018-11-08 09:52:25 +0100[diff] [blame]2294 0 \
2295 -c "key type: Opaque" \
Przemyslaw Stekielbb5d4832021-10-26 12:25:27 +0200[diff] [blame]2296 -c "Ciphersuite is TLS-ECDHE-ECDSA" \
Manuel Pégourié-Gonnardcfdf8f42018-11-08 09:52:25 +0100[diff] [blame]2297 -s "Verifying peer X.509 certificate... ok" \
Przemyslaw Stekielbb5d4832021-10-26 12:25:27 +0200[diff] [blame]2298 -s "Ciphersuite is TLS-ECDHE-ECDSA" \
Manuel Pégourié-Gonnardcfdf8f42018-11-08 09:52:25 +0100[diff] [blame]2299 -S "error" \
2300 -C "error"
2301
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2302# Test using a RSA opaque private key for client authentication
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2303requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2304requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2305requires_config_enabled MBEDTLS_RSA_C
valeriof27472b2023-03-09 16:19:35 +0100[diff] [blame]2306requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2307requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2308run_test "Opaque key for client authentication: ECDHE-RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2309 "$P_SRV force_version=tls12 auth_mode=required crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2310 key_file=$DATA_FILES_PATH/server2.key" \
2311 "$P_CLI key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2312 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pkcs1,none" \
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2313 0 \
2314 -c "key type: Opaque" \
2315 -c "Ciphersuite is TLS-ECDHE-RSA" \
2316 -s "Verifying peer X.509 certificate... ok" \
2317 -s "Ciphersuite is TLS-ECDHE-RSA" \
2318 -S "error" \
2319 -C "error"
2320
Neil Armstronga4dbfdd2022-03-21 10:11:07 +0100[diff] [blame]2321requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2322requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
2323requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2324requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2325run_test "Opaque key for client authentication: DHE-RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2326 "$P_SRV force_version=tls12 auth_mode=required crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2327 key_file=$DATA_FILES_PATH/server2.key" \
2328 "$P_CLI key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2329 key_file=$DATA_FILES_PATH/server2.key force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2330 key_opaque_algs=rsa-sign-pkcs1,none" \
Neil Armstronga4dbfdd2022-03-21 10:11:07 +0100[diff] [blame]2331 0 \
2332 -c "key type: Opaque" \
2333 -c "Ciphersuite is TLS-DHE-RSA" \
2334 -s "Verifying peer X.509 certificate... ok" \
2335 -s "Ciphersuite is TLS-DHE-RSA" \
2336 -S "error" \
2337 -C "error"
2338
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2339# Test using an EC opaque private key for server authentication
Przemyslaw Stekiel0483e3d2021-10-04 11:13:22 +0200[diff] [blame]2340requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2341requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]2342requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2343requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2344run_test "Opaque key for server authentication: ECDHE-ECDSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2345 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2346 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=ecdsa-sign,none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2347 "$P_CLI force_version=tls12" \
Przemyslaw Stekiel0483e3d2021-10-04 11:13:22 +0200[diff] [blame]2348 0 \
2349 -c "Verifying peer X.509 certificate... ok" \
Przemyslaw Stekielbb5d4832021-10-26 12:25:27 +0200[diff] [blame]2350 -c "Ciphersuite is TLS-ECDHE-ECDSA" \
Gilles Peskine05bf89d2022-01-25 17:50:25 +0100[diff] [blame]2351 -s "key types: Opaque, none" \
Przemyslaw Stekielbb5d4832021-10-26 12:25:27 +0200[diff] [blame]2352 -s "Ciphersuite is TLS-ECDHE-ECDSA" \
Przemyslaw Stekiel0483e3d2021-10-04 11:13:22 +0200[diff] [blame]2353 -S "error" \
2354 -C "error"
2355
Neil Armstrong023bf8d2022-03-23 14:04:04 +0100[diff] [blame]2356requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2357requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2358requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2359run_test "Opaque key for server authentication: ECDH-" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2360 "$P_SRV auth_mode=required key_opaque=1\
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2361 crt_file=$DATA_FILES_PATH/server5.ku-ka.crt\
2362 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=ecdh,none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2363 "$P_CLI force_version=tls12" \
Neil Armstrong023bf8d2022-03-23 14:04:04 +0100[diff] [blame]2364 0 \
2365 -c "Verifying peer X.509 certificate... ok" \
2366 -c "Ciphersuite is TLS-ECDH-" \
2367 -s "key types: Opaque, none" \
2368 -s "Ciphersuite is TLS-ECDH-" \
2369 -S "error" \
2370 -C "error"
2371
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2372requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2373requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2374requires_config_disabled MBEDTLS_SSL_ASYNC_PRIVATE
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2375requires_hash_alg SHA_256
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2376run_test "Opaque key for server authentication: invalid key: decrypt with ECC key, no async" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2377 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2378 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=rsa-decrypt,none \
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2379 debug_level=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2380 "$P_CLI force_version=tls12" \
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2381 1 \
2382 -s "key types: Opaque, none" \
2383 -s "error" \
2384 -c "error" \
2385 -c "Public key type mismatch"
2386
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2387requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2388requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
2389requires_config_enabled MBEDTLS_ECDSA_C
2390requires_config_enabled MBEDTLS_RSA_C
2391requires_config_disabled MBEDTLS_SSL_ASYNC_PRIVATE
2392requires_hash_alg SHA_256
2393run_test "Opaque key for server authentication: invalid key: ecdh with RSA key, no async" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2394 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2395 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=ecdh,none \
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2396 debug_level=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2397 "$P_CLI force_version=tls12" \
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2398 1 \
2399 -s "key types: Opaque, none" \
2400 -s "error" \
2401 -c "error" \
2402 -c "Public key type mismatch"
2403
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2404requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2405requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2406requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
2407requires_hash_alg SHA_256
2408run_test "Opaque key for server authentication: invalid alg: decrypt with ECC key, async" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2409 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2410 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=rsa-decrypt,none \
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2411 debug_level=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2412 "$P_CLI force_version=tls12" \
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2413 1 \
2414 -s "key types: Opaque, none" \
2415 -s "got ciphersuites in common, but none of them usable" \
2416 -s "error" \
2417 -c "error"
2418
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2419requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2420requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstrongeb4390b2022-05-27 10:26:02 +0200[diff] [blame]2421requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2422requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2423requires_hash_alg SHA_256
Andrzej Kurekd6817462022-09-06 14:32:00 -0400[diff] [blame]2424run_test "Opaque key for server authentication: invalid alg: ecdh with RSA key, async" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2425 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2426 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=ecdh,none \
Neil Armstrongeb4390b2022-05-27 10:26:02 +0200[diff] [blame]2427 debug_level=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2428 "$P_CLI force_version=tls12" \
Neil Armstrongeb4390b2022-05-27 10:26:02 +0200[diff] [blame]2429 1 \
2430 -s "key types: Opaque, none" \
2431 -s "got ciphersuites in common, but none of them usable" \
2432 -s "error" \
2433 -c "error"
2434
Neil Armstrongeb4390b2022-05-27 10:26:02 +0200[diff] [blame]2435requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2436requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2437requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2438run_test "Opaque key for server authentication: invalid alg: ECDHE-ECDSA with ecdh" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2439 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2440 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=ecdh,none \
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2441 debug_level=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2442 "$P_CLI force_version=tls12 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-256-CCM" \
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2443 1 \
2444 -s "key types: Opaque, none" \
2445 -s "got ciphersuites in common, but none of them usable" \
2446 -s "error" \
2447 -c "error"
2448
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2449requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2450requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]2451requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2452requires_hash_alg SHA_256
Neil Armstrongc67e6e92022-07-01 15:48:10 +0200[diff] [blame]2453requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2454run_test "Opaque keys for server authentication: EC keys with different algs, force ECDHE-ECDSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2455 "$P_SRV force_version=tls12 key_opaque=1 crt_file=$DATA_FILES_PATH/server7.crt \
2456 key_file=$DATA_FILES_PATH/server7.key key_opaque_algs=ecdh,none \
2457 crt_file2=$DATA_FILES_PATH/server5.crt key_file2=$DATA_FILES_PATH/server5.key \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2458 key_opaque_algs2=ecdsa-sign,none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2459 "$P_CLI force_version=tls12" \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2460 0 \
2461 -c "Verifying peer X.509 certificate... ok" \
2462 -c "Ciphersuite is TLS-ECDHE-ECDSA" \
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2463 -c "CN=Polarssl Test EC CA" \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2464 -s "key types: Opaque, Opaque" \
2465 -s "Ciphersuite is TLS-ECDHE-ECDSA" \
2466 -S "error" \
2467 -C "error"
2468
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2469requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2470requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2471requires_hash_alg SHA_384
Neil Armstrongc67e6e92022-07-01 15:48:10 +0200[diff] [blame]2472requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2473run_test "Opaque keys for server authentication: EC keys with different algs, force ECDH-ECDSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2474 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server7.crt \
2475 key_file=$DATA_FILES_PATH/server7.key key_opaque_algs=ecdsa-sign,none \
2476 crt_file2=$DATA_FILES_PATH/server5.crt key_file2=$DATA_FILES_PATH/server5.key \
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2477 key_opaque_algs2=ecdh,none debug_level=3" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2478 "$P_CLI force_version=tls12 force_ciphersuite=TLS-ECDH-ECDSA-WITH-CAMELLIA-256-CBC-SHA384" \
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2479 0 \
2480 -c "Verifying peer X.509 certificate... ok" \
2481 -c "Ciphersuite is TLS-ECDH-ECDSA" \
2482 -c "CN=Polarssl Test EC CA" \
2483 -s "key types: Opaque, Opaque" \
2484 -s "Ciphersuite is TLS-ECDH-ECDSA" \
2485 -S "error" \
2486 -C "error"
2487
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2488requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2489requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2490requires_hash_alg SHA_384
Neil Armstrongc67e6e92022-07-01 15:48:10 +0200[diff] [blame]2491requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2492run_test "Opaque keys for server authentication: EC + RSA, force ECDHE-ECDSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2493 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2494 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=ecdsa-sign,none \
2495 crt_file2=$DATA_FILES_PATH/server2-sha256.crt \
2496 key_file2=$DATA_FILES_PATH/server2.key key_opaque_algs2=rsa-sign-pkcs1,none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2497 "$P_CLI force_version=tls12 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-256-CCM" \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2498 0 \
2499 -c "Verifying peer X.509 certificate... ok" \
2500 -c "Ciphersuite is TLS-ECDHE-ECDSA" \
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2501 -c "CN=Polarssl Test EC CA" \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2502 -s "key types: Opaque, Opaque" \
2503 -s "Ciphersuite is TLS-ECDHE-ECDSA" \
2504 -S "error" \
2505 -C "error"
2506
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2507requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2508requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2509requires_config_enabled MBEDTLS_RSA_C
Jerry Yuddda0502022-12-01 19:43:12 +0800[diff] [blame]2510requires_config_enabled MBEDTLS_SSL_SRV_C
2511requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron6ec21232022-09-16 16:41:53 +0200[diff] [blame]2512run_test "TLS 1.3 opaque key: no suitable algorithm found" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]2513 "$P_SRV debug_level=4 auth_mode=required key_opaque=1 key_opaque_algs=rsa-decrypt,none" \
Ronald Crone3196d22022-09-16 16:43:35 +0200[diff] [blame]2514 "$P_CLI debug_level=4 key_opaque=1 key_opaque_algs=rsa-decrypt,rsa-sign-pss" \
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2515 1 \
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2516 -c "key type: Opaque" \
2517 -s "key types: Opaque, Opaque" \
2518 -c "error" \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]2519 -s "no suitable signature algorithm"
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2520
2521requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2522requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2523requires_config_enabled MBEDTLS_RSA_C
Jerry Yuddda0502022-12-01 19:43:12 +0800[diff] [blame]2524requires_config_enabled MBEDTLS_SSL_SRV_C
2525requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron6ec21232022-09-16 16:41:53 +0200[diff] [blame]2526run_test "TLS 1.3 opaque key: suitable algorithm found" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]2527 "$P_SRV debug_level=4 auth_mode=required key_opaque=1 key_opaque_algs=rsa-decrypt,rsa-sign-pss" \
Ronald Crone3196d22022-09-16 16:43:35 +0200[diff] [blame]2528 "$P_CLI debug_level=4 key_opaque=1 key_opaque_algs=rsa-decrypt,rsa-sign-pss" \
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2529 0 \
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2530 -c "key type: Opaque" \
2531 -s "key types: Opaque, Opaque" \
2532 -C "error" \
Jerry Yuddda0502022-12-01 19:43:12 +0800[diff] [blame]2533 -S "error"
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2534
2535requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2536requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2537requires_config_enabled MBEDTLS_RSA_C
Jerry Yuddda0502022-12-01 19:43:12 +0800[diff] [blame]2538requires_config_enabled MBEDTLS_SSL_SRV_C
2539requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron50969e32022-09-16 15:54:33 +0200[diff] [blame]2540run_test "TLS 1.3 opaque key: first client sig alg not suitable" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]2541 "$P_SRV debug_level=4 auth_mode=required key_opaque=1 key_opaque_algs=rsa-sign-pss-sha512,none" \
Ronald Cron50969e32022-09-16 15:54:33 +0200[diff] [blame]2542 "$P_CLI debug_level=4 sig_algs=rsa_pss_rsae_sha256,rsa_pss_rsae_sha512" \
2543 0 \
Ronald Cron50969e32022-09-16 15:54:33 +0200[diff] [blame]2544 -s "key types: Opaque, Opaque" \
2545 -s "CertificateVerify signature failed with rsa_pss_rsae_sha256" \
2546 -s "CertificateVerify signature with rsa_pss_rsae_sha512" \
2547 -C "error" \
2548 -S "error" \
2549
2550requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2551requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2552requires_config_enabled MBEDTLS_RSA_C
Jerry Yuddda0502022-12-01 19:43:12 +0800[diff] [blame]2553requires_config_enabled MBEDTLS_SSL_SRV_C
2554requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron6ec21232022-09-16 16:41:53 +0200[diff] [blame]2555run_test "TLS 1.3 opaque key: 2 keys on server, suitable algorithm found" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]2556 "$P_SRV debug_level=4 auth_mode=required key_opaque=1 key_opaque_algs2=ecdsa-sign,none key_opaque_algs=rsa-decrypt,rsa-sign-pss" \
Ronald Crone3196d22022-09-16 16:43:35 +0200[diff] [blame]2557 "$P_CLI debug_level=4 key_opaque=1 key_opaque_algs=rsa-decrypt,rsa-sign-pss" \
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2558 0 \
Przemek Stekielc454aba2022-07-07 09:56:13 +0200[diff] [blame]2559 -c "key type: Opaque" \
2560 -s "key types: Opaque, Opaque" \
2561 -C "error" \
2562 -S "error" \
2563
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2564# Test using a RSA opaque private key for server authentication
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2565requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2566requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2567requires_config_enabled MBEDTLS_RSA_C
valeriof27472b2023-03-09 16:19:35 +0100[diff] [blame]2568requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2569requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2570run_test "Opaque key for server authentication: ECDHE-RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2571 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2572 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pkcs1,none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2573 "$P_CLI force_version=tls12" \
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2574 0 \
2575 -c "Verifying peer X.509 certificate... ok" \
2576 -c "Ciphersuite is TLS-ECDHE-RSA" \
2577 -s "key types: Opaque, none" \
2578 -s "Ciphersuite is TLS-ECDHE-RSA" \
2579 -S "error" \
2580 -C "error"
2581
Neil Armstronga4dbfdd2022-03-21 10:11:07 +0100[diff] [blame]2582requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2583requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstronga4dbfdd2022-03-21 10:11:07 +0100[diff] [blame]2584requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2585requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2586run_test "Opaque key for server authentication: DHE-RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2587 "$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2588 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pkcs1,none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2589 "$P_CLI force_version=tls12 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
Neil Armstronga4dbfdd2022-03-21 10:11:07 +0100[diff] [blame]2590 0 \
2591 -c "Verifying peer X.509 certificate... ok" \
2592 -c "Ciphersuite is TLS-DHE-RSA" \
2593 -s "key types: Opaque, none" \
2594 -s "Ciphersuite is TLS-DHE-RSA" \
2595 -S "error" \
2596 -C "error"
2597
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2598requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2599requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2600requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2601requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2602run_test "Opaque key for server authentication: RSA-PSK" \
2603 "$P_SRV debug_level=1 key_opaque=1 key_opaque_algs=rsa-decrypt,none \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]2604 psk=73776f726466697368 psk_identity=foo" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2605 "$P_CLI force_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA256 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]2606 psk=73776f726466697368 psk_identity=foo" \
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2607 0 \
2608 -c "Verifying peer X.509 certificate... ok" \
2609 -c "Ciphersuite is TLS-RSA-PSK-" \
2610 -s "key types: Opaque, Opaque" \
2611 -s "Ciphersuite is TLS-RSA-PSK-" \
2612 -S "error" \
2613 -C "error"
2614
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2615requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2616requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
2617requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2618requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2619run_test "Opaque key for server authentication: RSA-" \
2620 "$P_SRV debug_level=3 key_opaque=1 key_opaque_algs=rsa-decrypt,none " \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2621 "$P_CLI force_version=tls12 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA256" \
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2622 0 \
2623 -c "Verifying peer X.509 certificate... ok" \
2624 -c "Ciphersuite is TLS-RSA-" \
2625 -s "key types: Opaque, Opaque" \
2626 -s "Ciphersuite is TLS-RSA-" \
2627 -S "error" \
2628 -C "error"
2629
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2630requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2631requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2632requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2633requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2634run_test "Opaque key for server authentication: DHE-RSA, PSS instead of PKCS1" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2635 "$P_SRV auth_mode=required key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2636 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pss,none debug_level=1" \
2637 "$P_CLI crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2638 key_file=$DATA_FILES_PATH/server2.key force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2639 1 \
2640 -s "key types: Opaque, none" \
2641 -s "got ciphersuites in common, but none of them usable" \
2642 -s "error" \
2643 -c "error"
2644
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2645requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2646requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2647requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2648requires_hash_alg SHA_256
Neil Armstrongc67e6e92022-07-01 15:48:10 +0200[diff] [blame]2649requires_config_disabled MBEDTLS_X509_REMOVE_INFO
valeriof27472b2023-03-09 16:19:35 +0100[diff] [blame]2650requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2651run_test "Opaque keys for server authentication: RSA keys with different algs" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2652 "$P_SRV force_version=tls12 auth_mode=required key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2653 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pss,none \
2654 crt_file2=$DATA_FILES_PATH/server4.crt \
2655 key_file2=$DATA_FILES_PATH/server4.key key_opaque_algs2=rsa-sign-pkcs1,none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2656 "$P_CLI force_version=tls12" \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2657 0 \
2658 -c "Verifying peer X.509 certificate... ok" \
2659 -c "Ciphersuite is TLS-ECDHE-RSA" \
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2660 -c "CN=Polarssl Test EC CA" \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2661 -s "key types: Opaque, Opaque" \
2662 -s "Ciphersuite is TLS-ECDHE-RSA" \
2663 -S "error" \
2664 -C "error"
2665
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2666requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2667requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2668requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2669requires_hash_alg SHA_384
Neil Armstrongc67e6e92022-07-01 15:48:10 +0200[diff] [blame]2670requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2671run_test "Opaque keys for server authentication: EC + RSA, force DHE-RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2672 "$P_SRV auth_mode=required key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2673 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=ecdsa-sign,none \
2674 crt_file2=$DATA_FILES_PATH/server4.crt \
2675 key_file2=$DATA_FILES_PATH/server4.key key_opaque_algs2=rsa-sign-pkcs1,none" \
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2676 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2677 0 \
2678 -c "Verifying peer X.509 certificate... ok" \
2679 -c "Ciphersuite is TLS-DHE-RSA" \
Neil Armstrong4b102092022-07-01 09:42:29 +0200[diff] [blame]2680 -c "CN=Polarssl Test EC CA" \
Neil Armstrong167d82c2022-06-30 11:32:00 +0200[diff] [blame]2681 -s "key types: Opaque, Opaque" \
2682 -s "Ciphersuite is TLS-DHE-RSA" \
2683 -S "error" \
2684 -C "error"
2685
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2686# Test using an EC opaque private key for client/server authentication
Przemyslaw Stekiel575f23c2021-10-06 11:31:49 +0200[diff] [blame]2687requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2688requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]2689requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2690requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2691run_test "Opaque key for client/server authentication: ECDHE-ECDSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2692 "$P_SRV force_version=tls12 auth_mode=required key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2693 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=ecdsa-sign,none" \
2694 "$P_CLI key_opaque=1 crt_file=$DATA_FILES_PATH/server5.crt \
2695 key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=ecdsa-sign,none" \
Przemyslaw Stekiel575f23c2021-10-06 11:31:49 +0200[diff] [blame]2696 0 \
2697 -c "key type: Opaque" \
2698 -c "Verifying peer X.509 certificate... ok" \
Przemyslaw Stekielbb5d4832021-10-26 12:25:27 +0200[diff] [blame]2699 -c "Ciphersuite is TLS-ECDHE-ECDSA" \
Gilles Peskine05bf89d2022-01-25 17:50:25 +0100[diff] [blame]2700 -s "key types: Opaque, none" \
Przemyslaw Stekiel575f23c2021-10-06 11:31:49 +0200[diff] [blame]2701 -s "Verifying peer X.509 certificate... ok" \
Przemyslaw Stekielbb5d4832021-10-26 12:25:27 +0200[diff] [blame]2702 -s "Ciphersuite is TLS-ECDHE-ECDSA" \
Simon Butcher8e004102016-10-14 00:48:33 +0100[diff] [blame]2703 -S "error" \
2704 -C "error"
2705
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2706# Test using a RSA opaque private key for client/server authentication
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2707requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2708requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2709requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2710requires_hash_alg SHA_256
valeriof27472b2023-03-09 16:19:35 +0100[diff] [blame]2711requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2712run_test "Opaque key for client/server authentication: ECDHE-RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2713 "$P_SRV auth_mode=required key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2714 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pkcs1,none" \
2715 "$P_CLI force_version=tls12 key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2716 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pkcs1,none" \
Neil Armstrong3e9a1422022-03-21 10:03:46 +0100[diff] [blame]2717 0 \
2718 -c "key type: Opaque" \
2719 -c "Verifying peer X.509 certificate... ok" \
2720 -c "Ciphersuite is TLS-ECDHE-RSA" \
2721 -s "key types: Opaque, none" \
2722 -s "Verifying peer X.509 certificate... ok" \
2723 -s "Ciphersuite is TLS-ECDHE-RSA" \
2724 -S "error" \
2725 -C "error"
2726
Neil Armstronga4dbfdd2022-03-21 10:11:07 +0100[diff] [blame]2727requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
2728requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
Neil Armstronga4dbfdd2022-03-21 10:11:07 +0100[diff] [blame]2729requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]2730requires_hash_alg SHA_256
Neil Armstrong1948a202022-06-30 18:05:57 +0200[diff] [blame]2731run_test "Opaque key for client/server authentication: DHE-RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2732 "$P_SRV auth_mode=required key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2733 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pkcs1,none" \
2734 "$P_CLI key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2735 key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=rsa-sign-pkcs1,none \
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2736 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
Neil Armstronga4dbfdd2022-03-21 10:11:07 +0100[diff] [blame]2737 0 \
2738 -c "key type: Opaque" \
2739 -c "Verifying peer X.509 certificate... ok" \
2740 -c "Ciphersuite is TLS-DHE-RSA" \
2741 -s "key types: Opaque, none" \
2742 -s "Verifying peer X.509 certificate... ok" \
2743 -s "Ciphersuite is TLS-DHE-RSA" \
2744 -S "error" \
2745 -C "error"
2746
Neil Armstrong36b02232022-06-30 11:16:53 +0200[diff] [blame]2747
Hanno Becker9b5853c2018-11-16 17:28:40 +0000[diff] [blame]2748# Test ciphersuites which we expect to be fully supported by PSA Crypto
2749# and check that we don't fall back to Mbed TLS' internal crypto primitives.
2750run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-CCM
2751run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8
2752run_test_psa TLS-ECDHE-ECDSA-WITH-AES-256-CCM
2753run_test_psa TLS-ECDHE-ECDSA-WITH-AES-256-CCM-8
2754run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256
2755run_test_psa TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384
2756run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA
2757run_test_psa TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256
2758run_test_psa TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384
2759
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2760requires_config_enabled PSA_WANT_ECC_SECP_R1_521
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2761run_test_psa_force_curve "secp521r1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2762requires_config_enabled PSA_WANT_ECC_BRAINPOOL_P_R1_512
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2763run_test_psa_force_curve "brainpoolP512r1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2764requires_config_enabled PSA_WANT_ECC_SECP_R1_384
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2765run_test_psa_force_curve "secp384r1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2766requires_config_enabled PSA_WANT_ECC_BRAINPOOL_P_R1_384
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2767run_test_psa_force_curve "brainpoolP384r1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2768requires_config_enabled PSA_WANT_ECC_SECP_R1_256
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2769run_test_psa_force_curve "secp256r1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2770requires_config_enabled PSA_WANT_ECC_SECP_K1_256
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2771run_test_psa_force_curve "secp256k1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2772requires_config_enabled PSA_WANT_ECC_BRAINPOOL_P_R1_256
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2773run_test_psa_force_curve "brainpoolP256r1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2774requires_config_enabled PSA_WANT_ECC_SECP_R1_224
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2775run_test_psa_force_curve "secp224r1"
Gilles Peskinedefdc3b2021-03-23 13:59:58 +0100[diff] [blame]2776## SECP224K1 is buggy via the PSA API
Dave Rodgman017a1992022-03-31 14:07:01 +0100[diff] [blame]2777## (https://github.com/Mbed-TLS/mbedtls/issues/3541),
Gilles Peskinedefdc3b2021-03-23 13:59:58 +0100[diff] [blame]2778## so it is disabled in PSA even when it's enabled in Mbed TLS.
2779## The proper dependency would be on PSA_WANT_ECC_SECP_K1_224 but
2780## dependencies on PSA symbols in ssl-opt.sh are not implemented yet.
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2781#requires_config_enabled PSA_WANT_ECC_SECP_K1_224
Gilles Peskinedefdc3b2021-03-23 13:59:58 +0100[diff] [blame]2782#run_test_psa_force_curve "secp224k1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2783requires_config_enabled PSA_WANT_ECC_SECP_R1_192
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2784run_test_psa_force_curve "secp192r1"
Manuel Pégourié-Gonnard22334a22023-10-19 11:27:33 +0200[diff] [blame]2785requires_config_enabled PSA_WANT_ECC_SECP_K1_192
Hanno Becker354e2482019-01-08 11:40:25 +0000[diff] [blame]2786run_test_psa_force_curve "secp192k1"
2787
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]2788# Test current time in ServerHello
2789requires_config_enabled MBEDTLS_HAVE_TIME
2790run_test "ServerHello contains gmt_unix_time" \
2791 "$P_SRV debug_level=3" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2792 "$P_CLI force_version=tls12 debug_level=3" \
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]2793 0 \
2794 -f "check_server_hello_time" \
Manuel Pégourié-Gonnard51d81662015-01-14 17:20:46 +0100[diff] [blame]2795 -F "check_server_hello_time"
Manuel Pégourié-Gonnardbd47a582015-01-12 13:43:29 +0100[diff] [blame]2796
2797# Test for uniqueness of IVs in AEAD ciphersuites
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2798run_test "Unique IV in GCM" \
2799 "$P_SRV exchanges=20 debug_level=4" \
Manuel Pégourié-Gonnardaf63c212017-06-08 17:51:08 +0200[diff] [blame]2800 "$P_CLI exchanges=20 debug_level=4 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384" \
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2801 0 \
2802 -u "IV used" \
2803 -U "IV used"
2804
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]2805# Test for correctness of sent single supported algorithm
Gilles Peskine07e24e92024-09-07 19:50:17 +0200[diff] [blame]2806requires_any_configs_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED \
2807 PSA_WANT_ECC_SECP_R1_256
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]2808requires_config_enabled MBEDTLS_DEBUG_C
2809requires_config_enabled MBEDTLS_SSL_CLI_C
Paul Elliott3b4ceda2022-11-17 12:47:10 +0000[diff] [blame]2810requires_config_enabled MBEDTLS_SSL_SRV_C
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]2811requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
2812requires_pk_alg "ECDSA"
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]2813requires_hash_alg SHA_256
Paul Elliottf6e342c2022-11-17 12:50:29 +0000[diff] [blame]2814run_test "Single supported algorithm sending: mbedtls client" \
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]2815 "$P_SRV sig_algs=ecdsa_secp256r1_sha256 auth_mode=required" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2816 "$P_CLI force_version=tls12 sig_algs=ecdsa_secp256r1_sha256 debug_level=3" \
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]2817 0 \
2818 -c "Supported Signature Algorithm found: 04 03"
2819
Paul Elliottf6e342c2022-11-17 12:50:29 +0000[diff] [blame]2820requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
2821requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine07e24e92024-09-07 19:50:17 +0200[diff] [blame]2822requires_any_configs_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED \
2823 PSA_WANT_ECC_SECP_R1_256
Paul Elliottf6e342c2022-11-17 12:50:29 +0000[diff] [blame]2824requires_hash_alg SHA_256
2825run_test "Single supported algorithm sending: openssl client" \
2826 "$P_SRV sig_algs=ecdsa_secp256r1_sha256 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2827 "$O_CLI -cert $DATA_FILES_PATH/server6.crt \
2828 -key $DATA_FILES_PATH/server6.key" \
Paul Elliottf6e342c2022-11-17 12:50:29 +0000[diff] [blame]2829 0
2830
Janos Follathee11be62019-04-04 12:03:30 +0100[diff] [blame]2831# Tests for certificate verification callback
2832run_test "Configuration-specific CRT verification callback" \
2833 "$P_SRV debug_level=3" \
Manuel Pégourié-Gonnarddee6ffa2024-08-16 09:53:41 +0200[diff] [blame]2834 "$P_CLI context_crt_cb=0 debug_level=3" \
Janos Follathee11be62019-04-04 12:03:30 +0100[diff] [blame]2835 0 \
Janos Follathee11be62019-04-04 12:03:30 +0100[diff] [blame]2836 -S "error" \
2837 -c "Verify requested for " \
2838 -c "Use configuration-specific verification callback" \
2839 -C "Use context-specific verification callback" \
2840 -C "error"
2841
Hanno Beckerefb440a2019-04-03 13:04:33 +0100[diff] [blame]2842run_test "Context-specific CRT verification callback" \
2843 "$P_SRV debug_level=3" \
Manuel Pégourié-Gonnarddee6ffa2024-08-16 09:53:41 +0200[diff] [blame]2844 "$P_CLI context_crt_cb=1 debug_level=3" \
Hanno Beckerefb440a2019-04-03 13:04:33 +0100[diff] [blame]2845 0 \
Hanno Beckerefb440a2019-04-03 13:04:33 +0100[diff] [blame]2846 -S "error" \
Janos Follathee11be62019-04-04 12:03:30 +0100[diff] [blame]2847 -c "Verify requested for " \
2848 -c "Use context-specific verification callback" \
2849 -C "Use configuration-specific verification callback" \
Hanno Beckerefb440a2019-04-03 13:04:33 +0100[diff] [blame]2850 -C "error"
2851
Manuel Pégourié-Gonnardc1da6642014-02-25 14:18:30 +0100[diff] [blame]2852# Tests for SHA-1 support
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]2853requires_hash_alg SHA_1
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2854run_test "SHA-1 forbidden by default in server certificate" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2855 "$P_SRV key_file=$DATA_FILES_PATH/server2.key crt_file=$DATA_FILES_PATH/server2.crt" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2856 "$P_CLI debug_level=2 force_version=tls12 allow_sha1=0" \
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2857 1 \
2858 -c "The certificate is signed with an unacceptable hash"
2859
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]2860requires_hash_alg SHA_1
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2861run_test "SHA-1 explicitly allowed in server certificate" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2862 "$P_SRV key_file=$DATA_FILES_PATH/server2.key crt_file=$DATA_FILES_PATH/server2.crt" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2863 "$P_CLI force_version=tls12 allow_sha1=1" \
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2864 0
2865
2866run_test "SHA-256 allowed by default in server certificate" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2867 "$P_SRV key_file=$DATA_FILES_PATH/server2.key crt_file=$DATA_FILES_PATH/server2-sha256.crt" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2868 "$P_CLI force_version=tls12 allow_sha1=0" \
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2869 0
2870
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]2871requires_hash_alg SHA_1
2872requires_config_enabled MBEDTLS_RSA_C
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2873run_test "SHA-1 forbidden by default in client certificate" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2874 "$P_SRV force_version=tls12 auth_mode=required allow_sha1=0" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2875 "$P_CLI key_file=$DATA_FILES_PATH/cli-rsa.key crt_file=$DATA_FILES_PATH/cli-rsa-sha1.crt" \
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2876 1 \
2877 -s "The certificate is signed with an unacceptable hash"
2878
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]2879requires_hash_alg SHA_1
2880requires_config_enabled MBEDTLS_RSA_C
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2881run_test "SHA-1 explicitly allowed in client certificate" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2882 "$P_SRV force_version=tls12 auth_mode=required allow_sha1=1" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2883 "$P_CLI key_file=$DATA_FILES_PATH/cli-rsa.key crt_file=$DATA_FILES_PATH/cli-rsa-sha1.crt" \
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2884 0
2885
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]2886requires_config_enabled MBEDTLS_RSA_C
2887requires_hash_alg SHA_256
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2888run_test "SHA-256 allowed by default in client certificate" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]2889 "$P_SRV force_version=tls12 auth_mode=required allow_sha1=0" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]2890 "$P_CLI key_file=$DATA_FILES_PATH/cli-rsa.key crt_file=$DATA_FILES_PATH/cli-rsa-sha256.crt" \
Gilles Peskinebc70a182017-05-09 15:59:24 +0200[diff] [blame]2891 0
2892
Hanno Becker7ae8a762018-08-14 15:43:35 +0100[diff] [blame]2893# Tests for datagram packing
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]2894requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker7ae8a762018-08-14 15:43:35 +0100[diff] [blame]2895run_test "DTLS: multiple records in same datagram, client and server" \
2896 "$P_SRV dtls=1 dgram_packing=1 debug_level=2" \
2897 "$P_CLI dtls=1 dgram_packing=1 debug_level=2" \
2898 0 \
2899 -c "next record in same datagram" \
2900 -s "next record in same datagram"
2901
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]2902requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker7ae8a762018-08-14 15:43:35 +0100[diff] [blame]2903run_test "DTLS: multiple records in same datagram, client only" \
2904 "$P_SRV dtls=1 dgram_packing=0 debug_level=2" \
2905 "$P_CLI dtls=1 dgram_packing=1 debug_level=2" \
2906 0 \
2907 -s "next record in same datagram" \
2908 -C "next record in same datagram"
2909
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]2910requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker7ae8a762018-08-14 15:43:35 +0100[diff] [blame]2911run_test "DTLS: multiple records in same datagram, server only" \
2912 "$P_SRV dtls=1 dgram_packing=1 debug_level=2" \
2913 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
2914 0 \
2915 -S "next record in same datagram" \
2916 -c "next record in same datagram"
2917
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]2918requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker7ae8a762018-08-14 15:43:35 +0100[diff] [blame]2919run_test "DTLS: multiple records in same datagram, neither client nor server" \
2920 "$P_SRV dtls=1 dgram_packing=0 debug_level=2" \
2921 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
2922 0 \
2923 -S "next record in same datagram" \
2924 -C "next record in same datagram"
2925
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]2926# Tests for Context serialization
2927
2928requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2929run_test "Context serialization, client serializes, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]2930 "$P_SRV dtls=1 serialize=0 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2931 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2932 0 \
2933 -c "Deserializing connection..." \
2934 -S "Deserializing connection..."
2935
2936requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2937run_test "Context serialization, client serializes, ChaChaPoly" \
2938 "$P_SRV dtls=1 serialize=0 exchanges=2" \
2939 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
2940 0 \
2941 -c "Deserializing connection..." \
2942 -S "Deserializing connection..."
2943
2944requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2945run_test "Context serialization, client serializes, GCM" \
2946 "$P_SRV dtls=1 serialize=0 exchanges=2" \
2947 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]2948 0 \
Jarno Lamsacbee1b32019-06-04 15:18:19 +0300[diff] [blame]2949 -c "Deserializing connection..." \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]2950 -S "Deserializing connection..."
2951
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]2952requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]2953requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]2954requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
2955run_test "Context serialization, client serializes, with CID" \
2956 "$P_SRV dtls=1 serialize=0 exchanges=2 cid=1 cid_val=dead" \
2957 "$P_CLI dtls=1 serialize=1 exchanges=2 cid=1 cid_val=beef" \
2958 0 \
2959 -c "Deserializing connection..." \
2960 -S "Deserializing connection..."
2961
2962requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2963run_test "Context serialization, server serializes, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]2964 "$P_SRV dtls=1 serialize=1 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2965 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
2966 0 \
2967 -C "Deserializing connection..." \
2968 -s "Deserializing connection..."
2969
2970requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2971run_test "Context serialization, server serializes, ChaChaPoly" \
2972 "$P_SRV dtls=1 serialize=1 exchanges=2" \
2973 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
2974 0 \
2975 -C "Deserializing connection..." \
2976 -s "Deserializing connection..."
2977
2978requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
2979run_test "Context serialization, server serializes, GCM" \
2980 "$P_SRV dtls=1 serialize=1 exchanges=2" \
2981 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]2982 0 \
Jarno Lamsacbee1b32019-06-04 15:18:19 +0300[diff] [blame]2983 -C "Deserializing connection..." \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]2984 -s "Deserializing connection..."
2985
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]2986requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]2987requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]2988requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
2989run_test "Context serialization, server serializes, with CID" \
2990 "$P_SRV dtls=1 serialize=1 exchanges=2 cid=1 cid_val=dead" \
2991 "$P_CLI dtls=1 serialize=0 exchanges=2 cid=1 cid_val=beef" \
2992 0 \
2993 -C "Deserializing connection..." \
2994 -s "Deserializing connection..."
2995
2996requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2997run_test "Context serialization, both serialize, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]2998 "$P_SRV dtls=1 serialize=1 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]2999 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
3000 0 \
3001 -c "Deserializing connection..." \
3002 -s "Deserializing connection..."
3003
3004requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3005run_test "Context serialization, both serialize, ChaChaPoly" \
3006 "$P_SRV dtls=1 serialize=1 exchanges=2" \
3007 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
3008 0 \
3009 -c "Deserializing connection..." \
3010 -s "Deserializing connection..."
3011
3012requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3013run_test "Context serialization, both serialize, GCM" \
3014 "$P_SRV dtls=1 serialize=1 exchanges=2" \
3015 "$P_CLI dtls=1 serialize=1 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]3016 0 \
Jarno Lamsacbee1b32019-06-04 15:18:19 +0300[diff] [blame]3017 -c "Deserializing connection..." \
Jarno Lamsa2937d812019-06-04 11:33:23 +0300[diff] [blame]3018 -s "Deserializing connection..."
3019
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3020requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]3021requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]3022requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
3023run_test "Context serialization, both serialize, with CID" \
3024 "$P_SRV dtls=1 serialize=1 exchanges=2 cid=1 cid_val=dead" \
3025 "$P_CLI dtls=1 serialize=1 exchanges=2 cid=1 cid_val=beef" \
3026 0 \
3027 -c "Deserializing connection..." \
3028 -s "Deserializing connection..."
3029
3030requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3031run_test "Context serialization, re-init, client serializes, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]3032 "$P_SRV dtls=1 serialize=0 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3033 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
3034 0 \
3035 -c "Deserializing connection..." \
3036 -S "Deserializing connection..."
3037
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3038requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3039requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3040run_test "Context serialization, re-init, client serializes, ChaChaPoly" \
3041 "$P_SRV dtls=1 serialize=0 exchanges=2" \
3042 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
3043 0 \
3044 -c "Deserializing connection..." \
3045 -S "Deserializing connection..."
3046
3047requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3048run_test "Context serialization, re-init, client serializes, GCM" \
3049 "$P_SRV dtls=1 serialize=0 exchanges=2" \
3050 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]3051 0 \
3052 -c "Deserializing connection..." \
3053 -S "Deserializing connection..."
3054
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3055requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]3056requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]3057requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
3058run_test "Context serialization, re-init, client serializes, with CID" \
3059 "$P_SRV dtls=1 serialize=0 exchanges=2 cid=1 cid_val=dead" \
3060 "$P_CLI dtls=1 serialize=2 exchanges=2 cid=1 cid_val=beef" \
3061 0 \
3062 -c "Deserializing connection..." \
3063 -S "Deserializing connection..."
3064
3065requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3066run_test "Context serialization, re-init, server serializes, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]3067 "$P_SRV dtls=1 serialize=2 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3068 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
3069 0 \
3070 -C "Deserializing connection..." \
3071 -s "Deserializing connection..."
3072
3073requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3074run_test "Context serialization, re-init, server serializes, ChaChaPoly" \
3075 "$P_SRV dtls=1 serialize=2 exchanges=2" \
3076 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
3077 0 \
3078 -C "Deserializing connection..." \
3079 -s "Deserializing connection..."
3080
3081requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3082run_test "Context serialization, re-init, server serializes, GCM" \
3083 "$P_SRV dtls=1 serialize=2 exchanges=2" \
3084 "$P_CLI dtls=1 serialize=0 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]3085 0 \
3086 -C "Deserializing connection..." \
3087 -s "Deserializing connection..."
3088
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3089requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]3090requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]3091requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
3092run_test "Context serialization, re-init, server serializes, with CID" \
3093 "$P_SRV dtls=1 serialize=2 exchanges=2 cid=1 cid_val=dead" \
3094 "$P_CLI dtls=1 serialize=0 exchanges=2 cid=1 cid_val=beef" \
3095 0 \
3096 -C "Deserializing connection..." \
3097 -s "Deserializing connection..."
3098
3099requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3100run_test "Context serialization, re-init, both serialize, CCM" \
Manuel Pégourié-Gonnard862b3192019-07-23 14:13:43 +0200[diff] [blame]3101 "$P_SRV dtls=1 serialize=2 exchanges=2" \
Hanno Beckere0b90ec2019-08-30 11:32:12 +0100[diff] [blame]3102 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
3103 0 \
3104 -c "Deserializing connection..." \
3105 -s "Deserializing connection..."
3106
3107requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3108run_test "Context serialization, re-init, both serialize, ChaChaPoly" \
3109 "$P_SRV dtls=1 serialize=2 exchanges=2" \
3110 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
3111 0 \
3112 -c "Deserializing connection..." \
3113 -s "Deserializing connection..."
3114
3115requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3116run_test "Context serialization, re-init, both serialize, GCM" \
3117 "$P_SRV dtls=1 serialize=2 exchanges=2" \
3118 "$P_CLI dtls=1 serialize=2 exchanges=2 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256" \
Jarno Lamsac2376f02019-06-06 10:44:14 +0300[diff] [blame]3119 0 \
3120 -c "Deserializing connection..." \
3121 -s "Deserializing connection..."
3122
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3123requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker1b18fd32019-08-30 11:18:59 +0100[diff] [blame]3124requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3125requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
3126run_test "Context serialization, re-init, both serialize, with CID" \
3127 "$P_SRV dtls=1 serialize=2 exchanges=2 cid=1 cid_val=dead" \
3128 "$P_CLI dtls=1 serialize=2 exchanges=2 cid=1 cid_val=beef" \
3129 0 \
3130 -c "Deserializing connection..." \
3131 -s "Deserializing connection..."
3132
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3133requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Piotr Nowicki3de298f2020-04-16 14:35:19 +0200[diff] [blame]3134requires_config_enabled MBEDTLS_SSL_CONTEXT_SERIALIZATION
3135run_test "Saving the serialized context to a file" \
3136 "$P_SRV dtls=1 serialize=1 context_file=context_srv.txt" \
3137 "$P_CLI dtls=1 serialize=1 context_file=context_cli.txt" \
3138 0 \
3139 -s "Save serialized context to a file... ok" \
3140 -c "Save serialized context to a file... ok"
3141rm -f context_srv.txt
3142rm -f context_cli.txt
3143
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3144# Tests for DTLS Connection ID extension
3145
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3146# So far, the CID API isn't implemented, so we can't
3147# grep for output witnessing its use. This needs to be
3148# changed once the CID extension is implemented.
3149
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3150requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3151requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3152run_test "Connection ID: Cli enabled, Srv disabled" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3153 "$P_SRV debug_level=3 dtls=1 cid=0" \
3154 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
3155 0 \
3156 -s "Disable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3157 -s "found CID extension" \
3158 -s "Client sent CID extension, but CID disabled" \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3159 -c "Enable use of CID extension." \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3160 -c "client hello, adding CID extension" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3161 -S "server hello, adding CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3162 -C "found CID extension" \
3163 -S "Copy CIDs into SSL transform" \
Hanno Beckerfcffdcc2019-04-26 17:19:46 +0100[diff] [blame]3164 -C "Copy CIDs into SSL transform" \
3165 -c "Use of Connection ID was rejected by the server"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3166
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3167requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3168requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3169run_test "Connection ID: Cli disabled, Srv enabled" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3170 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
3171 "$P_CLI debug_level=3 dtls=1 cid=0" \
3172 0 \
3173 -c "Disable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3174 -C "client hello, adding CID extension" \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3175 -S "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3176 -s "Enable use of CID extension." \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3177 -S "server hello, adding CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3178 -C "found CID extension" \
3179 -S "Copy CIDs into SSL transform" \
Hanno Beckerfcffdcc2019-04-26 17:19:46 +0100[diff] [blame]3180 -C "Copy CIDs into SSL transform" \
Hanno Beckerb3e9dd52019-05-08 13:19:53 +0100[diff] [blame]3181 -s "Use of Connection ID was not offered by client"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3182
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3183requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3184requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3185run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID nonempty" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3186 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead" \
3187 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef" \
3188 0 \
3189 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3190 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3191 -c "client hello, adding CID extension" \
3192 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3193 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3194 -s "server hello, adding CID extension" \
3195 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3196 -c "Use of CID extension negotiated" \
3197 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3198 -c "Copy CIDs into SSL transform" \
3199 -c "Peer CID (length 2 Bytes): de ad" \
3200 -s "Peer CID (length 2 Bytes): be ef" \
3201 -s "Use of Connection ID has been negotiated" \
3202 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3203
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3204requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3205requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3206run_test "Connection ID, 3D: Cli+Srv enabled, Cli+Srv CID nonempty" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3207 -p "$P_PXY drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3208 "$P_SRV debug_level=3 dtls=1 cid=1 dgram_packing=0 cid_val=dead" \
3209 "$P_CLI debug_level=3 dtls=1 cid=1 dgram_packing=0 cid_val=beef" \
3210 0 \
3211 -c "Enable use of CID extension." \
3212 -s "Enable use of CID extension." \
3213 -c "client hello, adding CID extension" \
3214 -s "found CID extension" \
3215 -s "Use of CID extension negotiated" \
3216 -s "server hello, adding CID extension" \
3217 -c "found CID extension" \
3218 -c "Use of CID extension negotiated" \
3219 -s "Copy CIDs into SSL transform" \
3220 -c "Copy CIDs into SSL transform" \
3221 -c "Peer CID (length 2 Bytes): de ad" \
3222 -s "Peer CID (length 2 Bytes): be ef" \
3223 -s "Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3224 -c "Use of Connection ID has been negotiated" \
3225 -c "ignoring unexpected CID" \
3226 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3227
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3228requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3229requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3230run_test "Connection ID, MTU: Cli+Srv enabled, Cli+Srv CID nonempty" \
3231 -p "$P_PXY mtu=800" \
3232 "$P_SRV debug_level=3 mtu=800 dtls=1 cid=1 cid_val=dead" \
3233 "$P_CLI debug_level=3 mtu=800 dtls=1 cid=1 cid_val=beef" \
3234 0 \
3235 -c "Enable use of CID extension." \
3236 -s "Enable use of CID extension." \
3237 -c "client hello, adding CID extension" \
3238 -s "found CID extension" \
3239 -s "Use of CID extension negotiated" \
3240 -s "server hello, adding CID extension" \
3241 -c "found CID extension" \
3242 -c "Use of CID extension negotiated" \
3243 -s "Copy CIDs into SSL transform" \
3244 -c "Copy CIDs into SSL transform" \
3245 -c "Peer CID (length 2 Bytes): de ad" \
3246 -s "Peer CID (length 2 Bytes): be ef" \
3247 -s "Use of Connection ID has been negotiated" \
3248 -c "Use of Connection ID has been negotiated"
3249
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3250requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3251requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3252run_test "Connection ID, 3D+MTU: Cli+Srv enabled, Cli+Srv CID nonempty" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3253 -p "$P_PXY mtu=800 drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3254 "$P_SRV debug_level=3 mtu=800 dtls=1 cid=1 cid_val=dead" \
3255 "$P_CLI debug_level=3 mtu=800 dtls=1 cid=1 cid_val=beef" \
3256 0 \
3257 -c "Enable use of CID extension." \
3258 -s "Enable use of CID extension." \
3259 -c "client hello, adding CID extension" \
3260 -s "found CID extension" \
3261 -s "Use of CID extension negotiated" \
3262 -s "server hello, adding CID extension" \
3263 -c "found CID extension" \
3264 -c "Use of CID extension negotiated" \
3265 -s "Copy CIDs into SSL transform" \
3266 -c "Copy CIDs into SSL transform" \
3267 -c "Peer CID (length 2 Bytes): de ad" \
3268 -s "Peer CID (length 2 Bytes): be ef" \
3269 -s "Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3270 -c "Use of Connection ID has been negotiated" \
3271 -c "ignoring unexpected CID" \
3272 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3273
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3274requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3275requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3276run_test "Connection ID: Cli+Srv enabled, Cli CID empty" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3277 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
3278 "$P_CLI debug_level=3 dtls=1 cid=1" \
3279 0 \
3280 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3281 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3282 -c "client hello, adding CID extension" \
3283 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3284 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3285 -s "server hello, adding CID extension" \
3286 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3287 -c "Use of CID extension negotiated" \
3288 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3289 -c "Copy CIDs into SSL transform" \
3290 -c "Peer CID (length 4 Bytes): de ad be ef" \
3291 -s "Peer CID (length 0 Bytes):" \
3292 -s "Use of Connection ID has been negotiated" \
3293 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3294
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3295requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3296requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3297run_test "Connection ID: Cli+Srv enabled, Srv CID empty" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3298 "$P_SRV debug_level=3 dtls=1 cid=1" \
3299 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
3300 0 \
3301 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3302 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3303 -c "client hello, adding CID extension" \
3304 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3305 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3306 -s "server hello, adding CID extension" \
3307 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3308 -c "Use of CID extension negotiated" \
3309 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3310 -c "Copy CIDs into SSL transform" \
3311 -s "Peer CID (length 4 Bytes): de ad be ef" \
3312 -c "Peer CID (length 0 Bytes):" \
3313 -s "Use of Connection ID has been negotiated" \
3314 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3315
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3316requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3317requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3318run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID empty" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3319 "$P_SRV debug_level=3 dtls=1 cid=1" \
3320 "$P_CLI debug_level=3 dtls=1 cid=1" \
3321 0 \
3322 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3323 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3324 -c "client hello, adding CID extension" \
3325 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3326 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3327 -s "server hello, adding CID extension" \
3328 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3329 -c "Use of CID extension negotiated" \
3330 -s "Copy CIDs into SSL transform" \
Hanno Beckerfcffdcc2019-04-26 17:19:46 +0100[diff] [blame]3331 -c "Copy CIDs into SSL transform" \
3332 -S "Use of Connection ID has been negotiated" \
3333 -C "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3334
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3335requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3336run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID nonempty, AES-128-CCM-8" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3337 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead" \
3338 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
3339 0 \
3340 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3341 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3342 -c "client hello, adding CID extension" \
3343 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3344 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3345 -s "server hello, adding CID extension" \
3346 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3347 -c "Use of CID extension negotiated" \
3348 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3349 -c "Copy CIDs into SSL transform" \
3350 -c "Peer CID (length 2 Bytes): de ad" \
3351 -s "Peer CID (length 2 Bytes): be ef" \
3352 -s "Use of Connection ID has been negotiated" \
3353 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3354
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3355requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3356run_test "Connection ID: Cli+Srv enabled, Cli CID empty, AES-128-CCM-8" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3357 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
3358 "$P_CLI debug_level=3 dtls=1 cid=1 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
3359 0 \
3360 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3361 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3362 -c "client hello, adding CID extension" \
3363 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3364 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3365 -s "server hello, adding CID extension" \
3366 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3367 -c "Use of CID extension negotiated" \
3368 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3369 -c "Copy CIDs into SSL transform" \
3370 -c "Peer CID (length 4 Bytes): de ad be ef" \
3371 -s "Peer CID (length 0 Bytes):" \
3372 -s "Use of Connection ID has been negotiated" \
3373 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3374
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3375requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3376run_test "Connection ID: Cli+Srv enabled, Srv CID empty, AES-128-CCM-8" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3377 "$P_SRV debug_level=3 dtls=1 cid=1" \
3378 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=deadbeef force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
3379 0 \
3380 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3381 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3382 -c "client hello, adding CID extension" \
3383 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3384 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3385 -s "server hello, adding CID extension" \
3386 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3387 -c "Use of CID extension negotiated" \
3388 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3389 -c "Copy CIDs into SSL transform" \
3390 -s "Peer CID (length 4 Bytes): de ad be ef" \
3391 -c "Peer CID (length 0 Bytes):" \
3392 -s "Use of Connection ID has been negotiated" \
3393 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3394
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3395requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3396run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID empty, AES-128-CCM-8" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3397 "$P_SRV debug_level=3 dtls=1 cid=1" \
3398 "$P_CLI debug_level=3 dtls=1 cid=1 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
3399 0 \
3400 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3401 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3402 -c "client hello, adding CID extension" \
3403 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3404 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3405 -s "server hello, adding CID extension" \
3406 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3407 -c "Use of CID extension negotiated" \
3408 -s "Copy CIDs into SSL transform" \
Hanno Beckerfcffdcc2019-04-26 17:19:46 +0100[diff] [blame]3409 -c "Copy CIDs into SSL transform" \
3410 -S "Use of Connection ID has been negotiated" \
3411 -C "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3412
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3413requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3414run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID nonempty, AES-128-CBC" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3415 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead" \
3416 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
3417 0 \
3418 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3419 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3420 -c "client hello, adding CID extension" \
3421 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3422 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3423 -s "server hello, adding CID extension" \
3424 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3425 -c "Use of CID extension negotiated" \
3426 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3427 -c "Copy CIDs into SSL transform" \
3428 -c "Peer CID (length 2 Bytes): de ad" \
3429 -s "Peer CID (length 2 Bytes): be ef" \
3430 -s "Use of Connection ID has been negotiated" \
3431 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3432
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3433requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3434run_test "Connection ID: Cli+Srv enabled, Cli CID empty, AES-128-CBC" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3435 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=deadbeef" \
3436 "$P_CLI debug_level=3 dtls=1 cid=1 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
3437 0 \
3438 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3439 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3440 -c "client hello, adding CID extension" \
3441 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3442 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3443 -s "server hello, adding CID extension" \
3444 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3445 -c "Use of CID extension negotiated" \
3446 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3447 -c "Copy CIDs into SSL transform" \
3448 -c "Peer CID (length 4 Bytes): de ad be ef" \
3449 -s "Peer CID (length 0 Bytes):" \
3450 -s "Use of Connection ID has been negotiated" \
3451 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3452
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3453requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3454run_test "Connection ID: Cli+Srv enabled, Srv CID empty, AES-128-CBC" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3455 "$P_SRV debug_level=3 dtls=1 cid=1" \
3456 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=deadbeef force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
3457 0 \
3458 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3459 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3460 -c "client hello, adding CID extension" \
3461 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3462 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3463 -s "server hello, adding CID extension" \
3464 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3465 -c "Use of CID extension negotiated" \
3466 -s "Copy CIDs into SSL transform" \
Hanno Becker2749a672019-05-03 17:04:23 +0100[diff] [blame]3467 -c "Copy CIDs into SSL transform" \
3468 -s "Peer CID (length 4 Bytes): de ad be ef" \
3469 -c "Peer CID (length 0 Bytes):" \
3470 -s "Use of Connection ID has been negotiated" \
3471 -c "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3472
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3473requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3474run_test "Connection ID: Cli+Srv enabled, Cli+Srv CID empty, AES-128-CBC" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3475 "$P_SRV debug_level=3 dtls=1 cid=1" \
3476 "$P_CLI debug_level=3 dtls=1 cid=1 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
3477 0 \
3478 -c "Enable use of CID extension." \
Hanno Becker6b78c832019-04-25 17:01:43 +0100[diff] [blame]3479 -s "Enable use of CID extension." \
Hanno Becker7dee2c62019-04-26 14:17:56 +0100[diff] [blame]3480 -c "client hello, adding CID extension" \
3481 -s "found CID extension" \
Hanno Becker4bc9e9d2019-04-26 16:00:29 +0100[diff] [blame]3482 -s "Use of CID extension negotiated" \
Hanno Beckera6a4c762019-04-26 16:13:31 +0100[diff] [blame]3483 -s "server hello, adding CID extension" \
3484 -c "found CID extension" \
Hanno Becker9ecb6c62019-04-26 16:23:52 +0100[diff] [blame]3485 -c "Use of CID extension negotiated" \
3486 -s "Copy CIDs into SSL transform" \
Hanno Beckerfcffdcc2019-04-26 17:19:46 +0100[diff] [blame]3487 -c "Copy CIDs into SSL transform" \
3488 -S "Use of Connection ID has been negotiated" \
3489 -C "Use of Connection ID has been negotiated"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3490
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3491requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3492requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker9bae30d2019-04-23 11:52:44 +0100[diff] [blame]3493requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3494run_test "Connection ID: Cli+Srv enabled, renegotiate without change of CID" \
Hanno Beckerf157a972019-04-25 16:05:45 +0100[diff] [blame]3495 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead renegotiation=1" \
3496 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef renegotiation=1 renegotiate=1" \
3497 0 \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3498 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3499 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3500 -s "(initial handshake) Use of Connection ID has been negotiated" \
3501 -c "(initial handshake) Use of Connection ID has been negotiated" \
3502 -c "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3503 -s "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3504 -s "(after renegotiation) Use of Connection ID has been negotiated" \
3505 -c "(after renegotiation) Use of Connection ID has been negotiated"
3506
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3507requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3508requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3509requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3510run_test "Connection ID: Cli+Srv enabled, renegotiate with different CID" \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3511 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead cid_val_renego=beef renegotiation=1" \
3512 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef cid_val_renego=dead renegotiation=1 renegotiate=1" \
3513 0 \
3514 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3515 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3516 -s "(initial handshake) Use of Connection ID has been negotiated" \
3517 -c "(initial handshake) Use of Connection ID has been negotiated" \
3518 -c "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3519 -s "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3520 -s "(after renegotiation) Use of Connection ID has been negotiated" \
3521 -c "(after renegotiation) Use of Connection ID has been negotiated"
3522
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3523requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3524requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3525requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]3526run_test "Connection ID, no packing: Cli+Srv enabled, renegotiate with different CID" \
3527 "$P_SRV debug_level=3 dtls=1 cid=1 dgram_packing=0 cid_val=dead cid_val_renego=beef renegotiation=1" \
3528 "$P_CLI debug_level=3 dtls=1 cid=1 dgram_packing=0 cid_val=beef cid_val_renego=dead renegotiation=1 renegotiate=1" \
3529 0 \
3530 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3531 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3532 -s "(initial handshake) Use of Connection ID has been negotiated" \
3533 -c "(initial handshake) Use of Connection ID has been negotiated" \
3534 -c "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3535 -s "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3536 -s "(after renegotiation) Use of Connection ID has been negotiated" \
3537 -c "(after renegotiation) Use of Connection ID has been negotiated"
3538
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3539requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3540requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]3541requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3542run_test "Connection ID, 3D+MTU: Cli+Srv enabled, renegotiate with different CID" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3543 -p "$P_PXY mtu=800 drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3544 "$P_SRV debug_level=3 mtu=800 dtls=1 cid=1 cid_val=dead cid_val_renego=beef renegotiation=1" \
3545 "$P_CLI debug_level=3 mtu=800 dtls=1 cid=1 cid_val=beef cid_val_renego=dead renegotiation=1 renegotiate=1" \
3546 0 \
3547 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3548 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3549 -s "(initial handshake) Use of Connection ID has been negotiated" \
3550 -c "(initial handshake) Use of Connection ID has been negotiated" \
3551 -c "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3552 -s "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3553 -s "(after renegotiation) Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3554 -c "(after renegotiation) Use of Connection ID has been negotiated" \
3555 -c "ignoring unexpected CID" \
3556 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3557
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3558requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3559requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3560requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
3561run_test "Connection ID: Cli+Srv enabled, renegotiate without CID" \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3562 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead cid_renego=0 renegotiation=1" \
3563 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef cid_renego=0 renegotiation=1 renegotiate=1" \
3564 0 \
3565 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3566 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3567 -s "(initial handshake) Use of Connection ID has been negotiated" \
3568 -c "(initial handshake) Use of Connection ID has been negotiated" \
3569 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3570 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3571 -C "(after renegotiation) Use of Connection ID has been negotiated" \
3572 -S "(after renegotiation) Use of Connection ID has been negotiated"
3573
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3574requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3575requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3576requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]3577run_test "Connection ID, no packing: Cli+Srv enabled, renegotiate without CID" \
3578 "$P_SRV debug_level=3 dtls=1 dgram_packing=0 cid=1 cid_val=dead cid_renego=0 renegotiation=1" \
3579 "$P_CLI debug_level=3 dtls=1 dgram_packing=0 cid=1 cid_val=beef cid_renego=0 renegotiation=1 renegotiate=1" \
3580 0 \
3581 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3582 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3583 -s "(initial handshake) Use of Connection ID has been negotiated" \
3584 -c "(initial handshake) Use of Connection ID has been negotiated" \
3585 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3586 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3587 -C "(after renegotiation) Use of Connection ID has been negotiated" \
3588 -S "(after renegotiation) Use of Connection ID has been negotiated"
3589
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3590requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3591requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]3592requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3593run_test "Connection ID, 3D+MTU: Cli+Srv enabled, renegotiate without CID" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3594 -p "$P_PXY drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3595 "$P_SRV debug_level=3 mtu=800 dtls=1 cid=1 cid_val=dead cid_renego=0 renegotiation=1" \
3596 "$P_CLI debug_level=3 mtu=800 dtls=1 cid=1 cid_val=beef cid_renego=0 renegotiation=1 renegotiate=1" \
3597 0 \
3598 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3599 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3600 -s "(initial handshake) Use of Connection ID has been negotiated" \
3601 -c "(initial handshake) Use of Connection ID has been negotiated" \
3602 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3603 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3604 -C "(after renegotiation) Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3605 -S "(after renegotiation) Use of Connection ID has been negotiated" \
3606 -c "ignoring unexpected CID" \
3607 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3608
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3609requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3610requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3611requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
3612run_test "Connection ID: Cli+Srv enabled, CID on renegotiation" \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3613 "$P_SRV debug_level=3 dtls=1 cid=0 cid_renego=1 cid_val_renego=dead renegotiation=1" \
3614 "$P_CLI debug_level=3 dtls=1 cid=0 cid_renego=1 cid_val_renego=beef renegotiation=1 renegotiate=1" \
3615 0 \
3616 -S "(initial handshake) Use of Connection ID has been negotiated" \
3617 -C "(initial handshake) Use of Connection ID has been negotiated" \
3618 -c "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3619 -s "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3620 -c "(after renegotiation) Use of Connection ID has been negotiated" \
3621 -s "(after renegotiation) Use of Connection ID has been negotiated"
3622
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3623requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3624requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3625requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]3626run_test "Connection ID, no packing: Cli+Srv enabled, CID on renegotiation" \
3627 "$P_SRV debug_level=3 dtls=1 dgram_packing=0 cid=0 cid_renego=1 cid_val_renego=dead renegotiation=1" \
3628 "$P_CLI debug_level=3 dtls=1 dgram_packing=0 cid=0 cid_renego=1 cid_val_renego=beef renegotiation=1 renegotiate=1" \
3629 0 \
3630 -S "(initial handshake) Use of Connection ID has been negotiated" \
3631 -C "(initial handshake) Use of Connection ID has been negotiated" \
3632 -c "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3633 -s "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3634 -c "(after renegotiation) Use of Connection ID has been negotiated" \
3635 -s "(after renegotiation) Use of Connection ID has been negotiated"
3636
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3637requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3638requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerc2045b02019-05-08 16:20:46 +0100[diff] [blame]3639requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3640run_test "Connection ID, 3D+MTU: Cli+Srv enabled, CID on renegotiation" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3641 -p "$P_PXY mtu=800 drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3642 "$P_SRV debug_level=3 mtu=800 dtls=1 dgram_packing=1 cid=0 cid_renego=1 cid_val_renego=dead renegotiation=1" \
3643 "$P_CLI debug_level=3 mtu=800 dtls=1 dgram_packing=1 cid=0 cid_renego=1 cid_val_renego=beef renegotiation=1 renegotiate=1" \
3644 0 \
3645 -S "(initial handshake) Use of Connection ID has been negotiated" \
3646 -C "(initial handshake) Use of Connection ID has been negotiated" \
3647 -c "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3648 -s "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3649 -c "(after renegotiation) Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3650 -s "(after renegotiation) Use of Connection ID has been negotiated" \
3651 -c "ignoring unexpected CID" \
3652 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3653
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3654requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3655requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3656requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
3657run_test "Connection ID: Cli+Srv enabled, Cli disables on renegotiation" \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3658 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead renegotiation=1" \
3659 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef cid_renego=0 renegotiation=1 renegotiate=1" \
3660 0 \
3661 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3662 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3663 -s "(initial handshake) Use of Connection ID has been negotiated" \
3664 -c "(initial handshake) Use of Connection ID has been negotiated" \
3665 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3666 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3667 -C "(after renegotiation) Use of Connection ID has been negotiated" \
3668 -S "(after renegotiation) Use of Connection ID has been negotiated" \
3669 -s "(after renegotiation) Use of Connection ID was not offered by client"
3670
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3671requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3672requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3673requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3674run_test "Connection ID, 3D: Cli+Srv enabled, Cli disables on renegotiation" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3675 -p "$P_PXY drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3676 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead renegotiation=1" \
3677 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef cid_renego=0 renegotiation=1 renegotiate=1" \
3678 0 \
3679 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3680 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3681 -s "(initial handshake) Use of Connection ID has been negotiated" \
3682 -c "(initial handshake) Use of Connection ID has been negotiated" \
3683 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3684 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3685 -C "(after renegotiation) Use of Connection ID has been negotiated" \
3686 -S "(after renegotiation) Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3687 -s "(after renegotiation) Use of Connection ID was not offered by client" \
3688 -c "ignoring unexpected CID" \
3689 -s "ignoring unexpected CID"
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3690
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3691requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3692requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3693requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
3694run_test "Connection ID: Cli+Srv enabled, Srv disables on renegotiation" \
3695 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead cid_renego=0 renegotiation=1" \
3696 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef renegotiation=1 renegotiate=1" \
3697 0 \
3698 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3699 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3700 -s "(initial handshake) Use of Connection ID has been negotiated" \
3701 -c "(initial handshake) Use of Connection ID has been negotiated" \
3702 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3703 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3704 -C "(after renegotiation) Use of Connection ID has been negotiated" \
3705 -S "(after renegotiation) Use of Connection ID has been negotiated" \
3706 -c "(after renegotiation) Use of Connection ID was rejected by the server"
3707
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3708requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera0e20d02019-05-15 14:03:01 +0100[diff] [blame]3709requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
Hanno Becker78c91372019-05-08 13:31:15 +0100[diff] [blame]3710requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
3711run_test "Connection ID, 3D: Cli+Srv enabled, Srv disables on renegotiation" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3712 -p "$P_PXY drop=5 delay=5 duplicate=5 bad_cid=1" \
Hanno Beckerb42ec0d2019-05-03 17:30:59 +0100[diff] [blame]3713 "$P_SRV debug_level=3 dtls=1 cid=1 cid_val=dead cid_renego=0 renegotiation=1" \
3714 "$P_CLI debug_level=3 dtls=1 cid=1 cid_val=beef renegotiation=1 renegotiate=1" \
3715 0 \
3716 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3717 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3718 -s "(initial handshake) Use of Connection ID has been negotiated" \
3719 -c "(initial handshake) Use of Connection ID has been negotiated" \
3720 -C "(after renegotiation) Peer CID (length 2 Bytes): de ad" \
3721 -S "(after renegotiation) Peer CID (length 2 Bytes): be ef" \
3722 -C "(after renegotiation) Use of Connection ID has been negotiated" \
3723 -S "(after renegotiation) Use of Connection ID has been negotiated" \
Hanno Beckerd0ac5fa2019-05-24 10:11:23 +0100[diff] [blame]3724 -c "(after renegotiation) Use of Connection ID was rejected by the server" \
3725 -c "ignoring unexpected CID" \
3726 -s "ignoring unexpected CID"
Hanno Becker7cf463e2019-04-09 18:08:47 +0100[diff] [blame]3727
Yuto Takano3fa16732021-07-09 11:21:43 +0100[diff] [blame]3728# This and the test below it require MAX_CONTENT_LEN to be at least MFL+1, because the
Yuto Takano9c09d552021-07-08 16:03:44 +0100[diff] [blame]3729# tests check that the buffer contents are reallocated when the message is
3730# larger than the buffer.
Andrzej Kurekb6577832020-06-08 07:08:03 -0400[diff] [blame]3731requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
3732requires_config_enabled MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
Yuto Takano9c09d552021-07-08 16:03:44 +0100[diff] [blame]3733requires_max_content_len 513
Andrzej Kurekb6577832020-06-08 07:08:03 -0400[diff] [blame]3734run_test "Connection ID: Cli+Srv enabled, variable buffer lengths, MFL=512" \
3735 "$P_SRV dtls=1 cid=1 cid_val=dead debug_level=2" \
3736 "$P_CLI force_ciphersuite="TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" max_frag_len=512 dtls=1 cid=1 cid_val=beef" \
3737 0 \
3738 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3739 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3740 -s "(initial handshake) Use of Connection ID has been negotiated" \
3741 -c "(initial handshake) Use of Connection ID has been negotiated" \
3742 -s "Reallocating in_buf" \
3743 -s "Reallocating out_buf"
3744
3745requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
3746requires_config_enabled MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
Yuto Takano9c09d552021-07-08 16:03:44 +0100[diff] [blame]3747requires_max_content_len 1025
Andrzej Kurekb6577832020-06-08 07:08:03 -0400[diff] [blame]3748run_test "Connection ID: Cli+Srv enabled, variable buffer lengths, MFL=1024" \
3749 "$P_SRV dtls=1 cid=1 cid_val=dead debug_level=2" \
3750 "$P_CLI force_ciphersuite="TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" max_frag_len=1024 dtls=1 cid=1 cid_val=beef" \
3751 0 \
3752 -c "(initial handshake) Peer CID (length 2 Bytes): de ad" \
3753 -s "(initial handshake) Peer CID (length 2 Bytes): be ef" \
3754 -s "(initial handshake) Use of Connection ID has been negotiated" \
3755 -c "(initial handshake) Use of Connection ID has been negotiated" \
3756 -s "Reallocating in_buf" \
3757 -s "Reallocating out_buf"
3758
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]3759# Tests for Encrypt-then-MAC extension
3760
3761run_test "Encrypt then MAC: default" \
Manuel Pégourié-Gonnard0098e7d2014-10-28 13:08:59 +0100[diff] [blame]3762 "$P_SRV debug_level=3 \
3763 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]3764 "$P_CLI debug_level=3" \
3765 0 \
3766 -c "client hello, adding encrypt_then_mac extension" \
3767 -s "found encrypt then mac extension" \
3768 -s "server hello, adding encrypt then mac extension" \
3769 -c "found encrypt_then_mac extension" \
3770 -c "using encrypt then mac" \
3771 -s "using encrypt then mac"
3772
3773run_test "Encrypt then MAC: client enabled, server disabled" \
Manuel Pégourié-Gonnard0098e7d2014-10-28 13:08:59 +0100[diff] [blame]3774 "$P_SRV debug_level=3 etm=0 \
3775 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]3776 "$P_CLI debug_level=3 etm=1" \
3777 0 \
3778 -c "client hello, adding encrypt_then_mac extension" \
3779 -s "found encrypt then mac extension" \
3780 -S "server hello, adding encrypt then mac extension" \
3781 -C "found encrypt_then_mac extension" \
3782 -C "using encrypt then mac" \
3783 -S "using encrypt then mac"
3784
Manuel Pégourié-Gonnard78e745f2014-11-04 15:44:06 +0100[diff] [blame]3785run_test "Encrypt then MAC: client enabled, aead cipher" \
3786 "$P_SRV debug_level=3 etm=1 \
3787 force_ciphersuite=TLS-RSA-WITH-AES-128-GCM-SHA256" \
3788 "$P_CLI debug_level=3 etm=1" \
3789 0 \
3790 -c "client hello, adding encrypt_then_mac extension" \
3791 -s "found encrypt then mac extension" \
3792 -S "server hello, adding encrypt then mac extension" \
3793 -C "found encrypt_then_mac extension" \
3794 -C "using encrypt then mac" \
3795 -S "using encrypt then mac"
3796
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]3797run_test "Encrypt then MAC: client disabled, server enabled" \
Manuel Pégourié-Gonnard0098e7d2014-10-28 13:08:59 +0100[diff] [blame]3798 "$P_SRV debug_level=3 etm=1 \
3799 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
Manuel Pégourié-Gonnard699cafa2014-10-27 13:57:03 +0100[diff] [blame]3800 "$P_CLI debug_level=3 etm=0" \
3801 0 \
3802 -C "client hello, adding encrypt_then_mac extension" \
3803 -S "found encrypt then mac extension" \
3804 -S "server hello, adding encrypt then mac extension" \
3805 -C "found encrypt_then_mac extension" \
3806 -C "using encrypt then mac" \
3807 -S "using encrypt then mac"
3808
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3809# Tests for Extended Master Secret extension
3810
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]3811requires_config_enabled MBEDTLS_SSL_EXTENDED_MASTER_SECRET
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3812run_test "Extended Master Secret: default" \
3813 "$P_SRV debug_level=3" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]3814 "$P_CLI force_version=tls12 debug_level=3" \
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3815 0 \
3816 -c "client hello, adding extended_master_secret extension" \
3817 -s "found extended master secret extension" \
3818 -s "server hello, adding extended master secret extension" \
3819 -c "found extended_master_secret extension" \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]3820 -c "session hash for extended master secret" \
3821 -s "session hash for extended master secret"
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3822
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]3823requires_config_enabled MBEDTLS_SSL_EXTENDED_MASTER_SECRET
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3824run_test "Extended Master Secret: client enabled, server disabled" \
3825 "$P_SRV debug_level=3 extended_ms=0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]3826 "$P_CLI force_version=tls12 debug_level=3 extended_ms=1" \
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3827 0 \
3828 -c "client hello, adding extended_master_secret extension" \
3829 -s "found extended master secret extension" \
3830 -S "server hello, adding extended master secret extension" \
3831 -C "found extended_master_secret extension" \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]3832 -C "session hash for extended master secret" \
3833 -S "session hash for extended master secret"
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3834
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]3835requires_config_enabled MBEDTLS_SSL_EXTENDED_MASTER_SECRET
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3836run_test "Extended Master Secret: client disabled, server enabled" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]3837 "$P_SRV force_version=tls12 debug_level=3 extended_ms=1" \
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3838 "$P_CLI debug_level=3 extended_ms=0" \
3839 0 \
3840 -C "client hello, adding extended_master_secret extension" \
3841 -S "found extended master secret extension" \
3842 -S "server hello, adding extended master secret extension" \
3843 -C "found extended_master_secret extension" \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]3844 -C "session hash for extended master secret" \
3845 -S "session hash for extended master secret"
Manuel Pégourié-Gonnard367381f2014-10-20 18:40:56 +0200[diff] [blame]3846
Andres Amaya Garcia4c761fa2018-07-10 20:08:04 +0100[diff] [blame]3847# Test sending and receiving empty application data records
3848
3849run_test "Encrypt then MAC: empty application data record" \
3850 "$P_SRV auth_mode=none debug_level=4 etm=1" \
3851 "$P_CLI auth_mode=none etm=1 request_size=0 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA" \
3852 0 \
3853 -S "0000: 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f" \
3854 -s "dumping 'input payload after decrypt' (0 bytes)" \
3855 -c "0 bytes written in 1 fragments"
3856
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3857requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard9e2c80f2020-03-24 10:53:39 +0100[diff] [blame]3858run_test "Encrypt then MAC: disabled, empty application data record" \
Andres Amaya Garcia4c761fa2018-07-10 20:08:04 +0100[diff] [blame]3859 "$P_SRV auth_mode=none debug_level=4 etm=0" \
3860 "$P_CLI auth_mode=none etm=0 request_size=0" \
3861 0 \
3862 -s "dumping 'input payload after decrypt' (0 bytes)" \
3863 -c "0 bytes written in 1 fragments"
3864
3865run_test "Encrypt then MAC, DTLS: empty application data record" \
3866 "$P_SRV auth_mode=none debug_level=4 etm=1 dtls=1" \
3867 "$P_CLI auth_mode=none etm=1 request_size=0 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA dtls=1" \
3868 0 \
3869 -S "0000: 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f 0f" \
3870 -s "dumping 'input payload after decrypt' (0 bytes)" \
3871 -c "0 bytes written in 1 fragments"
3872
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3873requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard9e2c80f2020-03-24 10:53:39 +0100[diff] [blame]3874run_test "Encrypt then MAC, DTLS: disabled, empty application data record" \
Andres Amaya Garcia4c761fa2018-07-10 20:08:04 +0100[diff] [blame]3875 "$P_SRV auth_mode=none debug_level=4 etm=0 dtls=1" \
3876 "$P_CLI auth_mode=none etm=0 request_size=0 dtls=1" \
3877 0 \
3878 -s "dumping 'input payload after decrypt' (0 bytes)" \
3879 -c "0 bytes written in 1 fragments"
3880
Manuel Pégourié-Gonnard3ff78232015-01-08 11:15:09 +0100[diff] [blame]3881# Tests for CBC 1/n-1 record splitting
3882
3883run_test "CBC Record splitting: TLS 1.2, no splitting" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]3884 "$P_SRV force_version=tls12" \
Manuel Pégourié-Gonnard3ff78232015-01-08 11:15:09 +0100[diff] [blame]3885 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]3886 request_size=123" \
Manuel Pégourié-Gonnard3ff78232015-01-08 11:15:09 +0100[diff] [blame]3887 0 \
3888 -s "Read from client: 123 bytes read" \
3889 -S "Read from client: 1 bytes read" \
3890 -S "122 bytes read"
3891
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]3892# Tests for Session Tickets
3893
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]3894requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3895run_test "Session resume using tickets: basic" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3896 "$P_SRV debug_level=3 tickets=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]3897 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]3898 0 \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]3899 -c "client hello, adding session ticket extension" \
3900 -s "found session ticket extension" \
3901 -s "server hello, adding session ticket extension" \
3902 -c "found session_ticket extension" \
3903 -c "parse new session ticket" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]3904 -S "session successfully restored from cache" \
3905 -s "session successfully restored from ticket" \
3906 -s "a session has been resumed" \
3907 -c "a session has been resumed"
3908
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]3909requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Glenn Strausse3282452022-02-03 17:23:24 -0500[diff] [blame]3910run_test "Session resume using tickets: manual rotation" \
3911 "$P_SRV debug_level=3 tickets=1 ticket_rotate=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]3912 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Glenn Strausse3282452022-02-03 17:23:24 -0500[diff] [blame]3913 0 \
3914 -c "client hello, adding session ticket extension" \
3915 -s "found session ticket extension" \
3916 -s "server hello, adding session ticket extension" \
3917 -c "found session_ticket extension" \
3918 -c "parse new session ticket" \
3919 -S "session successfully restored from cache" \
3920 -s "session successfully restored from ticket" \
3921 -s "a session has been resumed" \
3922 -c "a session has been resumed"
3923
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]3924requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3925run_test "Session resume using tickets: cache disabled" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3926 "$P_SRV debug_level=3 tickets=1 cache_max=0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]3927 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Manuel Pégourié-Gonnarddbe1ee12014-02-21 09:18:13 +0100[diff] [blame]3928 0 \
3929 -c "client hello, adding session ticket extension" \
3930 -s "found session ticket extension" \
3931 -s "server hello, adding session ticket extension" \
3932 -c "found session_ticket extension" \
3933 -c "parse new session ticket" \
3934 -S "session successfully restored from cache" \
3935 -s "session successfully restored from ticket" \
3936 -s "a session has been resumed" \
3937 -c "a session has been resumed"
3938
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]3939requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3940run_test "Session resume using tickets: timeout" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]3941 "$P_SRV debug_level=3 tickets=1 cache_max=0 ticket_timeout=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]3942 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1 reco_delay=2000" \
Manuel Pégourié-Gonnarddbe1ee12014-02-21 09:18:13 +0100[diff] [blame]3943 0 \
3944 -c "client hello, adding session ticket extension" \
3945 -s "found session ticket extension" \
3946 -s "server hello, adding session ticket extension" \
3947 -c "found session_ticket extension" \
3948 -c "parse new session ticket" \
3949 -S "session successfully restored from cache" \
3950 -S "session successfully restored from ticket" \
3951 -S "a session has been resumed" \
3952 -C "a session has been resumed"
3953
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]3954requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]3955run_test "Session resume using tickets: session copy" \
3956 "$P_SRV debug_level=3 tickets=1 cache_max=0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]3957 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1 reco_mode=0" \
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]3958 0 \
3959 -c "client hello, adding session ticket extension" \
3960 -s "found session ticket extension" \
3961 -s "server hello, adding session ticket extension" \
3962 -c "found session_ticket extension" \
3963 -c "parse new session ticket" \
3964 -S "session successfully restored from cache" \
3965 -s "session successfully restored from ticket" \
3966 -s "a session has been resumed" \
3967 -c "a session has been resumed"
3968
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3969requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]3970requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3971run_test "Session resume using tickets: openssl server" \
Ronald Croncbd7bfd2022-03-31 18:19:56 +0200[diff] [blame]3972 "$O_SRV -tls1_2" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]3973 "$P_CLI debug_level=3 tickets=1 new_session_tickets=1 reconnect=1" \
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]3974 0 \
3975 -c "client hello, adding session ticket extension" \
3976 -c "found session_ticket extension" \
3977 -c "parse new session ticket" \
3978 -c "a session has been resumed"
3979
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]3980requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]3981requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]3982run_test "Session resume using tickets: openssl client" \
Gilles Peskinee373c942024-04-29 17:44:19 +0200[diff] [blame]3983 "$P_SRV force_version=tls12 debug_level=3 tickets=1" \
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]3984 "( $O_CLI -sess_out $SESSION; \
3985 $O_CLI -sess_in $SESSION; \
3986 rm -f $SESSION )" \
Manuel Pégourié-Gonnardfccd3252014-02-25 17:14:15 +0100[diff] [blame]3987 0 \
3988 -s "found session ticket extension" \
3989 -s "server hello, adding session ticket extension" \
3990 -S "session successfully restored from cache" \
3991 -s "session successfully restored from ticket" \
3992 -s "a session has been resumed"
3993
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]3994requires_cipher_enabled "AES" "GCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]3995requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]3996run_test "Session resume using tickets: AES-128-GCM" \
3997 "$P_SRV debug_level=3 tickets=1 ticket_aead=AES-128-GCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]3998 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]3999 0 \
4000 -c "client hello, adding session ticket extension" \
4001 -s "found session ticket extension" \
4002 -s "server hello, adding session ticket extension" \
4003 -c "found session_ticket extension" \
4004 -c "parse new session ticket" \
4005 -S "session successfully restored from cache" \
4006 -s "session successfully restored from ticket" \
4007 -s "a session has been resumed" \
4008 -c "a session has been resumed"
4009
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4010requires_cipher_enabled "AES" "GCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4011requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4012run_test "Session resume using tickets: AES-192-GCM" \
4013 "$P_SRV debug_level=3 tickets=1 ticket_aead=AES-192-GCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4014 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4015 0 \
4016 -c "client hello, adding session ticket extension" \
4017 -s "found session ticket extension" \
4018 -s "server hello, adding session ticket extension" \
4019 -c "found session_ticket extension" \
4020 -c "parse new session ticket" \
4021 -S "session successfully restored from cache" \
4022 -s "session successfully restored from ticket" \
4023 -s "a session has been resumed" \
4024 -c "a session has been resumed"
4025
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4026requires_cipher_enabled "AES" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4027requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4028run_test "Session resume using tickets: AES-128-CCM" \
4029 "$P_SRV debug_level=3 tickets=1 ticket_aead=AES-128-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4030 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4031 0 \
4032 -c "client hello, adding session ticket extension" \
4033 -s "found session ticket extension" \
4034 -s "server hello, adding session ticket extension" \
4035 -c "found session_ticket extension" \
4036 -c "parse new session ticket" \
4037 -S "session successfully restored from cache" \
4038 -s "session successfully restored from ticket" \
4039 -s "a session has been resumed" \
4040 -c "a session has been resumed"
4041
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4042requires_cipher_enabled "AES" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4043requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4044run_test "Session resume using tickets: AES-192-CCM" \
4045 "$P_SRV debug_level=3 tickets=1 ticket_aead=AES-192-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4046 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4047 0 \
4048 -c "client hello, adding session ticket extension" \
4049 -s "found session ticket extension" \
4050 -s "server hello, adding session ticket extension" \
4051 -c "found session_ticket extension" \
4052 -c "parse new session ticket" \
4053 -S "session successfully restored from cache" \
4054 -s "session successfully restored from ticket" \
4055 -s "a session has been resumed" \
4056 -c "a session has been resumed"
4057
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4058requires_cipher_enabled "AES" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4059requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4060run_test "Session resume using tickets: AES-256-CCM" \
4061 "$P_SRV debug_level=3 tickets=1 ticket_aead=AES-256-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4062 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4063 0 \
4064 -c "client hello, adding session ticket extension" \
4065 -s "found session ticket extension" \
4066 -s "server hello, adding session ticket extension" \
4067 -c "found session_ticket extension" \
4068 -c "parse new session ticket" \
4069 -S "session successfully restored from cache" \
4070 -s "session successfully restored from ticket" \
4071 -s "a session has been resumed" \
4072 -c "a session has been resumed"
4073
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4074requires_cipher_enabled "CAMELLIA" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4075requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4076run_test "Session resume using tickets: CAMELLIA-128-CCM" \
4077 "$P_SRV debug_level=3 tickets=1 ticket_aead=CAMELLIA-128-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4078 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4079 0 \
4080 -c "client hello, adding session ticket extension" \
4081 -s "found session ticket extension" \
4082 -s "server hello, adding session ticket extension" \
4083 -c "found session_ticket extension" \
4084 -c "parse new session ticket" \
4085 -S "session successfully restored from cache" \
4086 -s "session successfully restored from ticket" \
4087 -s "a session has been resumed" \
4088 -c "a session has been resumed"
4089
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4090requires_cipher_enabled "CAMELLIA" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4091requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4092run_test "Session resume using tickets: CAMELLIA-192-CCM" \
4093 "$P_SRV debug_level=3 tickets=1 ticket_aead=CAMELLIA-192-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4094 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4095 0 \
4096 -c "client hello, adding session ticket extension" \
4097 -s "found session ticket extension" \
4098 -s "server hello, adding session ticket extension" \
4099 -c "found session_ticket extension" \
4100 -c "parse new session ticket" \
4101 -S "session successfully restored from cache" \
4102 -s "session successfully restored from ticket" \
4103 -s "a session has been resumed" \
4104 -c "a session has been resumed"
4105
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4106requires_cipher_enabled "CAMELLIA" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4107requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4108run_test "Session resume using tickets: CAMELLIA-256-CCM" \
4109 "$P_SRV debug_level=3 tickets=1 ticket_aead=CAMELLIA-256-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4110 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4111 0 \
4112 -c "client hello, adding session ticket extension" \
4113 -s "found session ticket extension" \
4114 -s "server hello, adding session ticket extension" \
4115 -c "found session_ticket extension" \
4116 -c "parse new session ticket" \
4117 -S "session successfully restored from cache" \
4118 -s "session successfully restored from ticket" \
4119 -s "a session has been resumed" \
4120 -c "a session has been resumed"
4121
Valerio Setti04c85e12023-11-13 10:54:05 +0100[diff] [blame]4122requires_cipher_enabled "ARIA" "GCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4123requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4124run_test "Session resume using tickets: ARIA-128-GCM" \
4125 "$P_SRV debug_level=3 tickets=1 ticket_aead=ARIA-128-GCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4126 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4127 0 \
4128 -c "client hello, adding session ticket extension" \
4129 -s "found session ticket extension" \
4130 -s "server hello, adding session ticket extension" \
4131 -c "found session_ticket extension" \
4132 -c "parse new session ticket" \
4133 -S "session successfully restored from cache" \
4134 -s "session successfully restored from ticket" \
4135 -s "a session has been resumed" \
4136 -c "a session has been resumed"
4137
Valerio Setti04c85e12023-11-13 10:54:05 +0100[diff] [blame]4138requires_cipher_enabled "ARIA" "GCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4139requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4140run_test "Session resume using tickets: ARIA-192-GCM" \
4141 "$P_SRV debug_level=3 tickets=1 ticket_aead=ARIA-192-GCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4142 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4143 0 \
4144 -c "client hello, adding session ticket extension" \
4145 -s "found session ticket extension" \
4146 -s "server hello, adding session ticket extension" \
4147 -c "found session_ticket extension" \
4148 -c "parse new session ticket" \
4149 -S "session successfully restored from cache" \
4150 -s "session successfully restored from ticket" \
4151 -s "a session has been resumed" \
4152 -c "a session has been resumed"
4153
Valerio Setti04c85e12023-11-13 10:54:05 +0100[diff] [blame]4154requires_cipher_enabled "ARIA" "GCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4155requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4156run_test "Session resume using tickets: ARIA-256-GCM" \
4157 "$P_SRV debug_level=3 tickets=1 ticket_aead=ARIA-256-GCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4158 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4159 0 \
4160 -c "client hello, adding session ticket extension" \
4161 -s "found session ticket extension" \
4162 -s "server hello, adding session ticket extension" \
4163 -c "found session_ticket extension" \
4164 -c "parse new session ticket" \
4165 -S "session successfully restored from cache" \
4166 -s "session successfully restored from ticket" \
4167 -s "a session has been resumed" \
4168 -c "a session has been resumed"
4169
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4170requires_cipher_enabled "ARIA" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4171requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4172run_test "Session resume using tickets: ARIA-128-CCM" \
4173 "$P_SRV debug_level=3 tickets=1 ticket_aead=ARIA-128-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4174 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4175 0 \
4176 -c "client hello, adding session ticket extension" \
4177 -s "found session ticket extension" \
4178 -s "server hello, adding session ticket extension" \
4179 -c "found session_ticket extension" \
4180 -c "parse new session ticket" \
4181 -S "session successfully restored from cache" \
4182 -s "session successfully restored from ticket" \
4183 -s "a session has been resumed" \
4184 -c "a session has been resumed"
4185
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4186requires_cipher_enabled "ARIA" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4187requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4188run_test "Session resume using tickets: ARIA-192-CCM" \
4189 "$P_SRV debug_level=3 tickets=1 ticket_aead=ARIA-192-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4190 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4191 0 \
4192 -c "client hello, adding session ticket extension" \
4193 -s "found session ticket extension" \
4194 -s "server hello, adding session ticket extension" \
4195 -c "found session_ticket extension" \
4196 -c "parse new session ticket" \
4197 -S "session successfully restored from cache" \
4198 -s "session successfully restored from ticket" \
4199 -s "a session has been resumed" \
4200 -c "a session has been resumed"
4201
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4202requires_cipher_enabled "ARIA" "CCM"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4203requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4204run_test "Session resume using tickets: ARIA-256-CCM" \
4205 "$P_SRV debug_level=3 tickets=1 ticket_aead=ARIA-256-CCM" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4206 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei6e5aae62022-01-12 16:29:58 +0100[diff] [blame]4207 0 \
4208 -c "client hello, adding session ticket extension" \
4209 -s "found session ticket extension" \
4210 -s "server hello, adding session ticket extension" \
4211 -c "found session_ticket extension" \
4212 -c "parse new session ticket" \
4213 -S "session successfully restored from cache" \
4214 -s "session successfully restored from ticket" \
4215 -s "a session has been resumed" \
4216 -c "a session has been resumed"
4217
Valerio Setti73d05312023-11-09 16:53:59 +0100[diff] [blame]4218requires_cipher_enabled "CHACHA20"
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4219requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Gabor Mezei49c8eb32022-03-10 16:13:17 +0100[diff] [blame]4220run_test "Session resume using tickets: CHACHA20-POLY1305" \
4221 "$P_SRV debug_level=3 tickets=1 ticket_aead=CHACHA20-POLY1305" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4222 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Gabor Mezei49c8eb32022-03-10 16:13:17 +0100[diff] [blame]4223 0 \
4224 -c "client hello, adding session ticket extension" \
4225 -s "found session ticket extension" \
4226 -s "server hello, adding session ticket extension" \
4227 -c "found session_ticket extension" \
4228 -c "parse new session ticket" \
4229 -S "session successfully restored from cache" \
4230 -s "session successfully restored from ticket" \
4231 -s "a session has been resumed" \
4232 -c "a session has been resumed"
4233
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4234# Tests for Session Tickets with DTLS
4235
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4236requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4237requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4238run_test "Session resume using tickets, DTLS: basic" \
4239 "$P_SRV debug_level=3 dtls=1 tickets=1" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4240 "$P_CLI debug_level=3 dtls=1 tickets=1 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4241 0 \
4242 -c "client hello, adding session ticket extension" \
4243 -s "found session ticket extension" \
4244 -s "server hello, adding session ticket extension" \
4245 -c "found session_ticket extension" \
4246 -c "parse new session ticket" \
4247 -S "session successfully restored from cache" \
4248 -s "session successfully restored from ticket" \
4249 -s "a session has been resumed" \
4250 -c "a session has been resumed"
4251
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4252requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4253requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4254run_test "Session resume using tickets, DTLS: cache disabled" \
4255 "$P_SRV debug_level=3 dtls=1 tickets=1 cache_max=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4256 "$P_CLI debug_level=3 dtls=1 tickets=1 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4257 0 \
4258 -c "client hello, adding session ticket extension" \
4259 -s "found session ticket extension" \
4260 -s "server hello, adding session ticket extension" \
4261 -c "found session_ticket extension" \
4262 -c "parse new session ticket" \
4263 -S "session successfully restored from cache" \
4264 -s "session successfully restored from ticket" \
4265 -s "a session has been resumed" \
4266 -c "a session has been resumed"
4267
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4268requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4269requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4270run_test "Session resume using tickets, DTLS: timeout" \
4271 "$P_SRV debug_level=3 dtls=1 tickets=1 cache_max=0 ticket_timeout=1" \
Jerry Yua15af372022-12-05 15:55:24 +0800[diff] [blame]4272 "$P_CLI debug_level=3 dtls=1 tickets=1 reconnect=1 skip_close_notify=1 reco_delay=2000" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4273 0 \
4274 -c "client hello, adding session ticket extension" \
4275 -s "found session ticket extension" \
4276 -s "server hello, adding session ticket extension" \
4277 -c "found session_ticket extension" \
4278 -c "parse new session ticket" \
4279 -S "session successfully restored from cache" \
4280 -S "session successfully restored from ticket" \
4281 -S "a session has been resumed" \
4282 -C "a session has been resumed"
4283
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4284requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4285requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]4286run_test "Session resume using tickets, DTLS: session copy" \
4287 "$P_SRV debug_level=3 dtls=1 tickets=1 cache_max=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4288 "$P_CLI debug_level=3 dtls=1 tickets=1 reconnect=1 skip_close_notify=1 reco_mode=0" \
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]4289 0 \
4290 -c "client hello, adding session ticket extension" \
4291 -s "found session ticket extension" \
4292 -s "server hello, adding session ticket extension" \
4293 -c "found session_ticket extension" \
4294 -c "parse new session ticket" \
4295 -S "session successfully restored from cache" \
4296 -s "session successfully restored from ticket" \
4297 -s "a session has been resumed" \
4298 -c "a session has been resumed"
4299
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4300requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4301requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]4302run_test "Session resume using tickets, DTLS: openssl server" \
4303 "$O_SRV -dtls" \
4304 "$P_CLI dtls=1 debug_level=3 tickets=1 reconnect=1" \
4305 0 \
4306 -c "client hello, adding session ticket extension" \
4307 -c "found session_ticket extension" \
4308 -c "parse new session ticket" \
4309 -c "a session has been resumed"
4310
Manuel Pégourié-Gonnardd60950c2021-10-13 13:12:47 +0200[diff] [blame]4311# For reasons that aren't fully understood, this test randomly fails with high
Paul Elliott09cfa182021-10-13 16:13:44 +0100[diff] [blame]4312# probability with OpenSSL 1.0.2g on the CI, see #5012.
Manuel Pégourié-Gonnardd60950c2021-10-13 13:12:47 +0200[diff] [blame]4313requires_openssl_next
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4314requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4315requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]4316run_test "Session resume using tickets, DTLS: openssl client" \
4317 "$P_SRV dtls=1 debug_level=3 tickets=1" \
Manuel Pégourié-Gonnardd60950c2021-10-13 13:12:47 +0200[diff] [blame]4318 "( $O_NEXT_CLI -dtls -sess_out $SESSION; \
4319 $O_NEXT_CLI -dtls -sess_in $SESSION; \
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]4320 rm -f $SESSION )" \
4321 0 \
4322 -s "found session ticket extension" \
4323 -s "server hello, adding session ticket extension" \
4324 -S "session successfully restored from cache" \
4325 -s "session successfully restored from ticket" \
4326 -s "a session has been resumed"
4327
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]4328# Tests for Session Resume based on session-ID and cache
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4329
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4330requires_config_enabled MBEDTLS_SSL_CACHE_C
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4331requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4332run_test "Session resume using cache: tickets enabled on client" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4333 "$P_SRV debug_level=3 tickets=0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4334 "$P_CLI force_version=tls12 debug_level=3 tickets=1 reconnect=1" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]4335 0 \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]4336 -c "client hello, adding session ticket extension" \
4337 -s "found session ticket extension" \
4338 -S "server hello, adding session ticket extension" \
4339 -C "found session_ticket extension" \
4340 -C "parse new session ticket" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]4341 -s "session successfully restored from cache" \
4342 -S "session successfully restored from ticket" \
4343 -s "a session has been resumed" \
4344 -c "a session has been resumed"
4345
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4346requires_config_enabled MBEDTLS_SSL_CACHE_C
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4347requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4348run_test "Session resume using cache: tickets enabled on server" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4349 "$P_SRV debug_level=3 tickets=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4350 "$P_CLI force_version=tls12 debug_level=3 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]4351 0 \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]4352 -C "client hello, adding session ticket extension" \
4353 -S "found session ticket extension" \
4354 -S "server hello, adding session ticket extension" \
4355 -C "found session_ticket extension" \
4356 -C "parse new session ticket" \
Manuel Pégourié-Gonnardf7c52012014-02-20 11:43:46 +0100[diff] [blame]4357 -s "session successfully restored from cache" \
4358 -S "session successfully restored from ticket" \
4359 -s "a session has been resumed" \
4360 -c "a session has been resumed"
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]4361
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4362requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4363run_test "Session resume using cache: cache_max=0" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4364 "$P_SRV debug_level=3 tickets=0 cache_max=0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4365 "$P_CLI force_version=tls12 debug_level=3 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnard4c883452014-02-20 21:32:41 +0100[diff] [blame]4366 0 \
4367 -S "session successfully restored from cache" \
4368 -S "session successfully restored from ticket" \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]4369 -S "a session has been resumed" \
4370 -C "a session has been resumed"
Manuel Pégourié-Gonnard4c883452014-02-20 21:32:41 +0100[diff] [blame]4371
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4372requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4373run_test "Session resume using cache: cache_max=1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4374 "$P_SRV debug_level=3 tickets=0 cache_max=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4375 "$P_CLI force_version=tls12 debug_level=3 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]4376 0 \
4377 -s "session successfully restored from cache" \
4378 -S "session successfully restored from ticket" \
4379 -s "a session has been resumed" \
4380 -c "a session has been resumed"
4381
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4382requires_config_enabled MBEDTLS_SSL_CACHE_C
Pengyu Lv62ed1aa2023-03-07 14:52:47 +0800[diff] [blame]4383run_test "Session resume using cache: cache removed" \
4384 "$P_SRV debug_level=3 tickets=0 cache_remove=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4385 "$P_CLI force_version=tls12 debug_level=3 tickets=0 reconnect=1" \
Pengyu Lv62ed1aa2023-03-07 14:52:47 +0800[diff] [blame]4386 0 \
4387 -C "client hello, adding session ticket extension" \
4388 -S "found session ticket extension" \
4389 -S "server hello, adding session ticket extension" \
4390 -C "found session_ticket extension" \
4391 -C "parse new session ticket" \
4392 -S "session successfully restored from cache" \
4393 -S "session successfully restored from ticket" \
4394 -S "a session has been resumed" \
4395 -C "a session has been resumed"
4396
4397requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
4398requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard6df31962015-05-04 10:55:47 +0200[diff] [blame]4399run_test "Session resume using cache: timeout > delay" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4400 "$P_SRV debug_level=3 tickets=0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4401 "$P_CLI force_version=tls12 debug_level=3 tickets=0 reconnect=1 reco_delay=0" \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]4402 0 \
4403 -s "session successfully restored from cache" \
4404 -S "session successfully restored from ticket" \
4405 -s "a session has been resumed" \
4406 -c "a session has been resumed"
4407
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4408requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4409run_test "Session resume using cache: timeout < delay" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4410 "$P_SRV debug_level=3 tickets=0 cache_timeout=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4411 "$P_CLI force_version=tls12 debug_level=3 tickets=0 reconnect=1 reco_delay=2000" \
Manuel Pégourié-Gonnardc55a5b72014-02-20 22:50:56 +0100[diff] [blame]4412 0 \
4413 -S "session successfully restored from cache" \
4414 -S "session successfully restored from ticket" \
4415 -S "a session has been resumed" \
4416 -C "a session has been resumed"
4417
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4418requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4419run_test "Session resume using cache: no timeout" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4420 "$P_SRV debug_level=3 tickets=0 cache_timeout=0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4421 "$P_CLI force_version=tls12 debug_level=3 tickets=0 reconnect=1 reco_delay=2000" \
Manuel Pégourié-Gonnard4c883452014-02-20 21:32:41 +0100[diff] [blame]4422 0 \
4423 -s "session successfully restored from cache" \
4424 -S "session successfully restored from ticket" \
4425 -s "a session has been resumed" \
4426 -c "a session has been resumed"
4427
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4428requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]4429run_test "Session resume using cache: session copy" \
4430 "$P_SRV debug_level=3 tickets=0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4431 "$P_CLI force_version=tls12 debug_level=3 tickets=0 reconnect=1 reco_mode=0" \
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]4432 0 \
4433 -s "session successfully restored from cache" \
4434 -S "session successfully restored from ticket" \
4435 -s "a session has been resumed" \
4436 -c "a session has been resumed"
4437
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4438requires_config_enabled MBEDTLS_SSL_CACHE_C
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4439requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4440run_test "Session resume using cache: openssl client" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]4441 "$P_SRV force_version=tls12 debug_level=3 tickets=0" \
Manuel Pégourié-Gonnardbc3b16c2014-05-28 23:06:50 +0200[diff] [blame]4442 "( $O_CLI -sess_out $SESSION; \
4443 $O_CLI -sess_in $SESSION; \
4444 rm -f $SESSION )" \
Manuel Pégourié-Gonnarddb735f62014-02-25 17:57:59 +0100[diff] [blame]4445 0 \
4446 -s "found session ticket extension" \
4447 -S "server hello, adding session ticket extension" \
4448 -s "session successfully restored from cache" \
4449 -S "session successfully restored from ticket" \
4450 -s "a session has been resumed"
4451
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4452requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4453requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4454run_test "Session resume using cache: openssl server" \
Ronald Croncbd7bfd2022-03-31 18:19:56 +0200[diff] [blame]4455 "$O_SRV -tls1_2" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4456 "$P_CLI debug_level=3 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnarddb735f62014-02-25 17:57:59 +0100[diff] [blame]4457 0 \
4458 -C "found session_ticket extension" \
4459 -C "parse new session ticket" \
4460 -c "a session has been resumed"
4461
Andrzej Kurek7cf87252022-06-14 07:12:33 -0400[diff] [blame]4462# Tests for Session resume and extensions
4463
4464requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
4465requires_config_enabled MBEDTLS_SSL_DTLS_CONNECTION_ID
4466run_test "Session resume and connection ID" \
4467 "$P_SRV debug_level=3 cid=1 cid_val=dead dtls=1 tickets=0" \
4468 "$P_CLI debug_level=3 cid=1 cid_val=beef dtls=1 tickets=0 reconnect=1" \
4469 0 \
4470 -c "Enable use of CID extension." \
4471 -s "Enable use of CID extension." \
4472 -c "client hello, adding CID extension" \
4473 -s "found CID extension" \
4474 -s "Use of CID extension negotiated" \
4475 -s "server hello, adding CID extension" \
4476 -c "found CID extension" \
4477 -c "Use of CID extension negotiated" \
4478 -s "Copy CIDs into SSL transform" \
4479 -c "Copy CIDs into SSL transform" \
4480 -c "Peer CID (length 2 Bytes): de ad" \
4481 -s "Peer CID (length 2 Bytes): be ef" \
4482 -s "Use of Connection ID has been negotiated" \
4483 -c "Use of Connection ID has been negotiated"
4484
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4485# Tests for Session Resume based on session-ID and cache, DTLS
4486
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4487requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4488requires_config_enabled MBEDTLS_SSL_CACHE_C
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4489requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4490run_test "Session resume using cache, DTLS: tickets enabled on client" \
4491 "$P_SRV dtls=1 debug_level=3 tickets=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4492 "$P_CLI dtls=1 debug_level=3 tickets=1 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4493 0 \
4494 -c "client hello, adding session ticket extension" \
4495 -s "found session ticket extension" \
4496 -S "server hello, adding session ticket extension" \
4497 -C "found session_ticket extension" \
4498 -C "parse new session ticket" \
4499 -s "session successfully restored from cache" \
4500 -S "session successfully restored from ticket" \
4501 -s "a session has been resumed" \
4502 -c "a session has been resumed"
4503
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4504requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4505requires_config_enabled MBEDTLS_SSL_CACHE_C
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4506requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4507run_test "Session resume using cache, DTLS: tickets enabled on server" \
4508 "$P_SRV dtls=1 debug_level=3 tickets=1" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4509 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4510 0 \
4511 -C "client hello, adding session ticket extension" \
4512 -S "found session ticket extension" \
4513 -S "server hello, adding session ticket extension" \
4514 -C "found session_ticket extension" \
4515 -C "parse new session ticket" \
4516 -s "session successfully restored from cache" \
4517 -S "session successfully restored from ticket" \
4518 -s "a session has been resumed" \
4519 -c "a session has been resumed"
4520
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4521requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4522requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4523run_test "Session resume using cache, DTLS: cache_max=0" \
4524 "$P_SRV dtls=1 debug_level=3 tickets=0 cache_max=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4525 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4526 0 \
4527 -S "session successfully restored from cache" \
4528 -S "session successfully restored from ticket" \
4529 -S "a session has been resumed" \
4530 -C "a session has been resumed"
4531
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4532requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4533requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4534run_test "Session resume using cache, DTLS: cache_max=1" \
4535 "$P_SRV dtls=1 debug_level=3 tickets=0 cache_max=1" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4536 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4537 0 \
4538 -s "session successfully restored from cache" \
4539 -S "session successfully restored from ticket" \
4540 -s "a session has been resumed" \
4541 -c "a session has been resumed"
4542
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4543requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4544requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4545run_test "Session resume using cache, DTLS: timeout > delay" \
4546 "$P_SRV dtls=1 debug_level=3 tickets=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4547 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1 reco_delay=0" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4548 0 \
4549 -s "session successfully restored from cache" \
4550 -S "session successfully restored from ticket" \
4551 -s "a session has been resumed" \
4552 -c "a session has been resumed"
4553
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4554requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4555requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4556run_test "Session resume using cache, DTLS: timeout < delay" \
4557 "$P_SRV dtls=1 debug_level=3 tickets=0 cache_timeout=1" \
Jerry Yua15af372022-12-05 15:55:24 +0800[diff] [blame]4558 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1 reco_delay=2000" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4559 0 \
4560 -S "session successfully restored from cache" \
4561 -S "session successfully restored from ticket" \
4562 -S "a session has been resumed" \
4563 -C "a session has been resumed"
4564
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4565requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4566requires_config_enabled MBEDTLS_SSL_CACHE_C
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4567run_test "Session resume using cache, DTLS: no timeout" \
4568 "$P_SRV dtls=1 debug_level=3 tickets=0 cache_timeout=0" \
Jerry Yua15af372022-12-05 15:55:24 +0800[diff] [blame]4569 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1 reco_delay=2000" \
Hanno Becker1d739932018-08-21 13:55:22 +0100[diff] [blame]4570 0 \
4571 -s "session successfully restored from cache" \
4572 -S "session successfully restored from ticket" \
4573 -s "a session has been resumed" \
4574 -c "a session has been resumed"
4575
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4576requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4577requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]4578run_test "Session resume using cache, DTLS: session copy" \
4579 "$P_SRV dtls=1 debug_level=3 tickets=0" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]4580 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1 skip_close_notify=1 reco_mode=0" \
Manuel Pégourié-Gonnarda7c37652019-05-20 12:46:26 +0200[diff] [blame]4581 0 \
4582 -s "session successfully restored from cache" \
4583 -S "session successfully restored from ticket" \
4584 -s "a session has been resumed" \
4585 -c "a session has been resumed"
4586
Manuel Pégourié-Gonnardd60950c2021-10-13 13:12:47 +0200[diff] [blame]4587# For reasons that aren't fully understood, this test randomly fails with high
Paul Elliott09cfa182021-10-13 16:13:44 +0100[diff] [blame]4588# probability with OpenSSL 1.0.2g on the CI, see #5012.
Manuel Pégourié-Gonnardd60950c2021-10-13 13:12:47 +0200[diff] [blame]4589requires_openssl_next
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4590requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4591requires_config_enabled MBEDTLS_SSL_CACHE_C
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]4592requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]4593run_test "Session resume using cache, DTLS: openssl client" \
4594 "$P_SRV dtls=1 debug_level=3 tickets=0" \
Manuel Pégourié-Gonnardd60950c2021-10-13 13:12:47 +0200[diff] [blame]4595 "( $O_NEXT_CLI -dtls -sess_out $SESSION; \
4596 $O_NEXT_CLI -dtls -sess_in $SESSION; \
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]4597 rm -f $SESSION )" \
4598 0 \
4599 -s "found session ticket extension" \
4600 -S "server hello, adding session ticket extension" \
4601 -s "session successfully restored from cache" \
4602 -S "session successfully restored from ticket" \
4603 -s "a session has been resumed"
4604
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4605requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]4606requires_config_enabled MBEDTLS_SSL_CACHE_C
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]4607run_test "Session resume using cache, DTLS: openssl server" \
4608 "$O_SRV -dtls" \
4609 "$P_CLI dtls=1 debug_level=3 tickets=0 reconnect=1" \
4610 0 \
4611 -C "found session_ticket extension" \
4612 -C "parse new session ticket" \
4613 -c "a session has been resumed"
4614
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4615# Tests for Max Fragment Length extension
4616
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]4617requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4618requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4619run_test "Max fragment length: enabled, default" \
Waleed Elmelegy3d46b7f2024-01-01 20:50:53 +0000[diff] [blame]4620 "$P_SRV debug_level=3 force_version=tls12" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4621 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]4622 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4623 -c "Maximum incoming record payload length is $MAX_CONTENT_LEN" \
4624 -c "Maximum outgoing record payload length is $MAX_CONTENT_LEN" \
4625 -s "Maximum incoming record payload length is $MAX_CONTENT_LEN" \
4626 -s "Maximum outgoing record payload length is $MAX_CONTENT_LEN" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]4627 -C "client hello, adding max_fragment_length extension" \
4628 -S "found max fragment length extension" \
4629 -S "server hello, max_fragment_length extension" \
4630 -C "found max_fragment_length extension"
4631
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]4632requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4633requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4634run_test "Max fragment length: enabled, default, larger message" \
Waleed Elmelegy3d46b7f2024-01-01 20:50:53 +0000[diff] [blame]4635 "$P_SRV debug_level=3 force_version=tls12" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4636 "$P_CLI debug_level=3 request_size=$(( $MAX_CONTENT_LEN + 1))" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4637 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4638 -c "Maximum incoming record payload length is $MAX_CONTENT_LEN" \
4639 -c "Maximum outgoing record payload length is $MAX_CONTENT_LEN" \
4640 -s "Maximum incoming record payload length is $MAX_CONTENT_LEN" \
4641 -s "Maximum outgoing record payload length is $MAX_CONTENT_LEN" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4642 -C "client hello, adding max_fragment_length extension" \
4643 -S "found max fragment length extension" \
4644 -S "server hello, max_fragment_length extension" \
4645 -C "found max_fragment_length extension" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4646 -c "$(( $MAX_CONTENT_LEN + 1)) bytes written in 2 fragments" \
4647 -s "$MAX_CONTENT_LEN bytes read" \
Hanno Becker9cfabe32017-10-18 14:42:01 +0100[diff] [blame]4648 -s "1 bytes read"
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4649
4650requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4651requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4652run_test "Max fragment length, DTLS: enabled, default, larger message" \
4653 "$P_SRV debug_level=3 dtls=1" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4654 "$P_CLI debug_level=3 dtls=1 request_size=$(( $MAX_CONTENT_LEN + 1))" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4655 1 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4656 -c "Maximum incoming record payload length is $MAX_CONTENT_LEN" \
4657 -c "Maximum outgoing record payload length is $MAX_CONTENT_LEN" \
4658 -s "Maximum incoming record payload length is $MAX_CONTENT_LEN" \
4659 -s "Maximum outgoing record payload length is $MAX_CONTENT_LEN" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4660 -C "client hello, adding max_fragment_length extension" \
4661 -S "found max fragment length extension" \
4662 -S "server hello, max_fragment_length extension" \
4663 -C "found max_fragment_length extension" \
4664 -c "fragment larger than.*maximum "
4665
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4666# Run some tests with MBEDTLS_SSL_MAX_FRAGMENT_LENGTH disabled
4667# (session fragment length will be 16384 regardless of mbedtls
4668# content length configuration.)
4669
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4670requires_config_disabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4671requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4672run_test "Max fragment length: disabled, larger message" \
Waleed Elmelegy3d46b7f2024-01-01 20:50:53 +0000[diff] [blame]4673 "$P_SRV debug_level=3 force_version=tls12" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4674 "$P_CLI debug_level=3 request_size=$(( $MAX_CONTENT_LEN + 1))" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4675 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4676 -C "Maximum incoming record payload length is 16384" \
4677 -C "Maximum outgoing record payload length is 16384" \
4678 -S "Maximum incoming record payload length is 16384" \
4679 -S "Maximum outgoing record payload length is 16384" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4680 -c "$(( $MAX_CONTENT_LEN + 1)) bytes written in 2 fragments" \
4681 -s "$MAX_CONTENT_LEN bytes read" \
Hanno Becker9cfabe32017-10-18 14:42:01 +0100[diff] [blame]4682 -s "1 bytes read"
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4683
4684requires_config_disabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4685requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Yuto Takano0509fea2021-06-21 19:43:33 +0100[diff] [blame]4686run_test "Max fragment length, DTLS: disabled, larger message" \
Waleed Elmelegy3d46b7f2024-01-01 20:50:53 +0000[diff] [blame]4687 "$P_SRV debug_level=3 dtls=1 force_version=tls12" \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]4688 "$P_CLI debug_level=3 dtls=1 request_size=$(( $MAX_CONTENT_LEN + 1))" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4689 1 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4690 -C "Maximum incoming record payload length is 16384" \
4691 -C "Maximum outgoing record payload length is 16384" \
4692 -S "Maximum incoming record payload length is 16384" \
4693 -S "Maximum outgoing record payload length is 16384" \
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4694 -c "fragment larger than.*maximum "
4695
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4696requires_max_content_len 4096
Hanno Beckerc5266962017-09-18 15:01:50 +0100[diff] [blame]4697requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4698run_test "Max fragment length: used by client" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4699 "$P_SRV debug_level=3" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4700 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=4096" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]4701 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4702 -c "Maximum incoming record payload length is 4096" \
4703 -c "Maximum outgoing record payload length is 4096" \
4704 -s "Maximum incoming record payload length is 4096" \
4705 -s "Maximum outgoing record payload length is 4096" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4706 -c "client hello, adding max_fragment_length extension" \
4707 -s "found max fragment length extension" \
4708 -s "server hello, max_fragment_length extension" \
4709 -c "found max_fragment_length extension"
4710
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4711requires_max_content_len 1024
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4712requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4713run_test "Max fragment length: client 512, server 1024" \
4714 "$P_SRV debug_level=3 max_frag_len=1024" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4715 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4716 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4717 -c "Maximum incoming record payload length is 512" \
4718 -c "Maximum outgoing record payload length is 512" \
4719 -s "Maximum incoming record payload length is 512" \
4720 -s "Maximum outgoing record payload length is 512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4721 -c "client hello, adding max_fragment_length extension" \
4722 -s "found max fragment length extension" \
4723 -s "server hello, max_fragment_length extension" \
4724 -c "found max_fragment_length extension"
4725
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4726requires_max_content_len 2048
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4727requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4728run_test "Max fragment length: client 512, server 2048" \
4729 "$P_SRV debug_level=3 max_frag_len=2048" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4730 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4731 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4732 -c "Maximum incoming record payload length is 512" \
4733 -c "Maximum outgoing record payload length is 512" \
4734 -s "Maximum incoming record payload length is 512" \
4735 -s "Maximum outgoing record payload length is 512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4736 -c "client hello, adding max_fragment_length extension" \
4737 -s "found max fragment length extension" \
4738 -s "server hello, max_fragment_length extension" \
4739 -c "found max_fragment_length extension"
4740
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4741requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4742requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4743run_test "Max fragment length: client 512, server 4096" \
4744 "$P_SRV debug_level=3 max_frag_len=4096" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4745 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4746 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4747 -c "Maximum incoming record payload length is 512" \
4748 -c "Maximum outgoing record payload length is 512" \
4749 -s "Maximum incoming record payload length is 512" \
4750 -s "Maximum outgoing record payload length is 512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4751 -c "client hello, adding max_fragment_length extension" \
4752 -s "found max fragment length extension" \
4753 -s "server hello, max_fragment_length extension" \
4754 -c "found max_fragment_length extension"
4755
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4756requires_max_content_len 1024
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4757requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4758run_test "Max fragment length: client 1024, server 512" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4759 "$P_SRV force_version=tls12 debug_level=3 max_frag_len=512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4760 "$P_CLI debug_level=3 max_frag_len=1024" \
4761 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4762 -c "Maximum incoming record payload length is 1024" \
4763 -c "Maximum outgoing record payload length is 1024" \
4764 -s "Maximum incoming record payload length is 1024" \
4765 -s "Maximum outgoing record payload length is 512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4766 -c "client hello, adding max_fragment_length extension" \
4767 -s "found max fragment length extension" \
4768 -s "server hello, max_fragment_length extension" \
4769 -c "found max_fragment_length extension"
4770
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4771requires_max_content_len 2048
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4772requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4773run_test "Max fragment length: client 1024, server 2048" \
4774 "$P_SRV debug_level=3 max_frag_len=2048" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4775 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=1024" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4776 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4777 -c "Maximum incoming record payload length is 1024" \
4778 -c "Maximum outgoing record payload length is 1024" \
4779 -s "Maximum incoming record payload length is 1024" \
4780 -s "Maximum outgoing record payload length is 1024" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4781 -c "client hello, adding max_fragment_length extension" \
4782 -s "found max fragment length extension" \
4783 -s "server hello, max_fragment_length extension" \
4784 -c "found max_fragment_length extension"
4785
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4786requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4787requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4788run_test "Max fragment length: client 1024, server 4096" \
4789 "$P_SRV debug_level=3 max_frag_len=4096" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4790 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=1024" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4791 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4792 -c "Maximum incoming record payload length is 1024" \
4793 -c "Maximum outgoing record payload length is 1024" \
4794 -s "Maximum incoming record payload length is 1024" \
4795 -s "Maximum outgoing record payload length is 1024" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4796 -c "client hello, adding max_fragment_length extension" \
4797 -s "found max fragment length extension" \
4798 -s "server hello, max_fragment_length extension" \
4799 -c "found max_fragment_length extension"
4800
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4801requires_max_content_len 2048
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4802requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4803run_test "Max fragment length: client 2048, server 512" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4804 "$P_SRV force_version=tls12 debug_level=3 max_frag_len=512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4805 "$P_CLI debug_level=3 max_frag_len=2048" \
4806 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4807 -c "Maximum incoming record payload length is 2048" \
4808 -c "Maximum outgoing record payload length is 2048" \
4809 -s "Maximum incoming record payload length is 2048" \
4810 -s "Maximum outgoing record payload length is 512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4811 -c "client hello, adding max_fragment_length extension" \
4812 -s "found max fragment length extension" \
4813 -s "server hello, max_fragment_length extension" \
4814 -c "found max_fragment_length extension"
4815
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4816requires_max_content_len 2048
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4817requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4818run_test "Max fragment length: client 2048, server 1024" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4819 "$P_SRV force_version=tls12 debug_level=3 max_frag_len=1024" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4820 "$P_CLI debug_level=3 max_frag_len=2048" \
4821 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4822 -c "Maximum incoming record payload length is 2048" \
4823 -c "Maximum outgoing record payload length is 2048" \
4824 -s "Maximum incoming record payload length is 2048" \
4825 -s "Maximum outgoing record payload length is 1024" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4826 -c "client hello, adding max_fragment_length extension" \
4827 -s "found max fragment length extension" \
4828 -s "server hello, max_fragment_length extension" \
4829 -c "found max_fragment_length extension"
4830
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4831requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4832requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4833run_test "Max fragment length: client 2048, server 4096" \
4834 "$P_SRV debug_level=3 max_frag_len=4096" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4835 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=2048" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4836 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4837 -c "Maximum incoming record payload length is 2048" \
4838 -c "Maximum outgoing record payload length is 2048" \
4839 -s "Maximum incoming record payload length is 2048" \
4840 -s "Maximum outgoing record payload length is 2048" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4841 -c "client hello, adding max_fragment_length extension" \
4842 -s "found max fragment length extension" \
4843 -s "server hello, max_fragment_length extension" \
4844 -c "found max_fragment_length extension"
4845
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4846requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4847requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4848run_test "Max fragment length: client 4096, server 512" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4849 "$P_SRV force_version=tls12 debug_level=3 max_frag_len=512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4850 "$P_CLI debug_level=3 max_frag_len=4096" \
4851 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4852 -c "Maximum incoming record payload length is 4096" \
4853 -c "Maximum outgoing record payload length is 4096" \
4854 -s "Maximum incoming record payload length is 4096" \
4855 -s "Maximum outgoing record payload length is 512" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4856 -c "client hello, adding max_fragment_length extension" \
4857 -s "found max fragment length extension" \
4858 -s "server hello, max_fragment_length extension" \
4859 -c "found max_fragment_length extension"
4860
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4861requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4862requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4863run_test "Max fragment length: client 4096, server 1024" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4864 "$P_SRV force_version=tls12 debug_level=3 max_frag_len=1024" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4865 "$P_CLI debug_level=3 max_frag_len=4096" \
4866 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4867 -c "Maximum incoming record payload length is 4096" \
4868 -c "Maximum outgoing record payload length is 4096" \
4869 -s "Maximum incoming record payload length is 4096" \
4870 -s "Maximum outgoing record payload length is 1024" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4871 -c "client hello, adding max_fragment_length extension" \
4872 -s "found max fragment length extension" \
4873 -s "server hello, max_fragment_length extension" \
4874 -c "found max_fragment_length extension"
4875
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4876requires_max_content_len 4096
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4877requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
4878run_test "Max fragment length: client 4096, server 2048" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4879 "$P_SRV force_version=tls12 debug_level=3 max_frag_len=2048" \
Andrzej Kurek90c6e842020-04-03 05:25:29 -0400[diff] [blame]4880 "$P_CLI debug_level=3 max_frag_len=4096" \
4881 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4882 -c "Maximum incoming record payload length is 4096" \
4883 -c "Maximum outgoing record payload length is 4096" \
4884 -s "Maximum incoming record payload length is 4096" \
4885 -s "Maximum outgoing record payload length is 2048" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]4886 -c "client hello, adding max_fragment_length extension" \
4887 -s "found max fragment length extension" \
4888 -s "server hello, max_fragment_length extension" \
4889 -c "found max_fragment_length extension"
4890
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4891requires_max_content_len 4096
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]4892requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4893run_test "Max fragment length: used by server" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4894 "$P_SRV force_version=tls12 debug_level=3 max_frag_len=4096" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4895 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]4896 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4897 -c "Maximum incoming record payload length is $MAX_CONTENT_LEN" \
4898 -c "Maximum outgoing record payload length is $MAX_CONTENT_LEN" \
4899 -s "Maximum incoming record payload length is $MAX_CONTENT_LEN" \
4900 -s "Maximum outgoing record payload length is 4096" \
Manuel Pégourié-Gonnardde143782014-02-20 14:50:42 +0100[diff] [blame]4901 -C "client hello, adding max_fragment_length extension" \
4902 -S "found max fragment length extension" \
4903 -S "server hello, max_fragment_length extension" \
4904 -C "found max_fragment_length extension"
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]4905
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4906requires_max_content_len 4096
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]4907requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4908requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4909requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]4910run_test "Max fragment length: gnutls server" \
Ronald Croncbd7bfd2022-03-31 18:19:56 +0200[diff] [blame]4911 "$G_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]4912 "$P_CLI debug_level=3 max_frag_len=4096" \
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]4913 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4914 -c "Maximum incoming record payload length is 4096" \
4915 -c "Maximum outgoing record payload length is 4096" \
Manuel Pégourié-Gonnardbaa7f072014-08-20 20:15:53 +0200[diff] [blame]4916 -c "client hello, adding max_fragment_length extension" \
4917 -c "found max_fragment_length extension"
4918
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4919requires_max_content_len 2048
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]4920requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]4921run_test "Max fragment length: client, message just fits" \
4922 "$P_SRV debug_level=3" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4923 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=2048 request_size=2048" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]4924 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4925 -c "Maximum incoming record payload length is 2048" \
4926 -c "Maximum outgoing record payload length is 2048" \
4927 -s "Maximum incoming record payload length is 2048" \
4928 -s "Maximum outgoing record payload length is 2048" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]4929 -c "client hello, adding max_fragment_length extension" \
4930 -s "found max fragment length extension" \
4931 -s "server hello, max_fragment_length extension" \
4932 -c "found max_fragment_length extension" \
4933 -c "2048 bytes written in 1 fragments" \
4934 -s "2048 bytes read"
4935
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4936requires_max_content_len 2048
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]4937requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]4938run_test "Max fragment length: client, larger message" \
4939 "$P_SRV debug_level=3" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]4940 "$P_CLI force_version=tls12 debug_level=3 max_frag_len=2048 request_size=2345" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]4941 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4942 -c "Maximum incoming record payload length is 2048" \
4943 -c "Maximum outgoing record payload length is 2048" \
4944 -s "Maximum incoming record payload length is 2048" \
4945 -s "Maximum outgoing record payload length is 2048" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]4946 -c "client hello, adding max_fragment_length extension" \
4947 -s "found max fragment length extension" \
4948 -s "server hello, max_fragment_length extension" \
4949 -c "found max_fragment_length extension" \
4950 -c "2345 bytes written in 2 fragments" \
4951 -s "2048 bytes read" \
4952 -s "297 bytes read"
4953
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]4954requires_max_content_len 2048
Hanno Becker4aed27e2017-09-18 15:00:34 +0100[diff] [blame]4955requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]4956requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard23eb74d2015-01-21 14:37:13 +0000[diff] [blame]4957run_test "Max fragment length: DTLS client, larger message" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]4958 "$P_SRV debug_level=3 dtls=1" \
4959 "$P_CLI debug_level=3 dtls=1 max_frag_len=2048 request_size=2345" \
4960 1 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]4961 -c "Maximum incoming record payload length is 2048" \
4962 -c "Maximum outgoing record payload length is 2048" \
4963 -s "Maximum incoming record payload length is 2048" \
4964 -s "Maximum outgoing record payload length is 2048" \
Manuel Pégourié-Gonnard37e08e12014-10-13 17:55:52 +0200[diff] [blame]4965 -c "client hello, adding max_fragment_length extension" \
4966 -s "found max fragment length extension" \
4967 -s "server hello, max_fragment_length extension" \
4968 -c "found max_fragment_length extension" \
4969 -c "fragment larger than.*maximum"
4970
Jan Bruckneraa31b192023-02-06 12:54:29 +0100[diff] [blame]4971# Tests for Record Size Limit extension
4972
Jan Bruckneraa31b192023-02-06 12:54:29 +0100[diff] [blame]4973requires_gnutls_tls1_3
4974requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]4975requires_config_enabled MBEDTLS_SSL_SRV_C
4976requires_config_enabled MBEDTLS_DEBUG_C
Jan Bruckner151f6422023-02-10 12:45:19 +0100[diff] [blame]4977requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy9457e672024-01-08 15:40:12 +0000[diff] [blame]4978requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]4979run_test "Record Size Limit: TLS 1.3: Server-side parsing and debug output" \
Jan Bruckner151f6422023-02-10 12:45:19 +0100[diff] [blame]4980 "$P_SRV debug_level=3 force_version=tls13" \
Jan Bruckneraa31b192023-02-06 12:54:29 +0100[diff] [blame]4981 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3 -V -d 4" \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]4982 0 \
Jan Bruckner151f6422023-02-10 12:45:19 +0100[diff] [blame]4983 -s "RecordSizeLimit: 16385 Bytes" \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]4984 -s "ClientHello: record_size_limit(28) extension exists." \
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]4985 -s "Maximum outgoing record payload length is 16383" \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]4986 -s "bytes written in 1 fragments"
Jan Bruckner151f6422023-02-10 12:45:19 +0100[diff] [blame]4987
4988requires_gnutls_tls1_3
4989requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]4990requires_config_enabled MBEDTLS_SSL_CLI_C
4991requires_config_enabled MBEDTLS_DEBUG_C
Jan Bruckner151f6422023-02-10 12:45:19 +0100[diff] [blame]4992requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy9457e672024-01-08 15:40:12 +0000[diff] [blame]4993requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]4994run_test "Record Size Limit: TLS 1.3: Client-side parsing and debug output" \
Waleed Elmelegy9457e672024-01-08 15:40:12 +0000[diff] [blame]4995 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL --disable-client-cert -d 4" \
Jan Bruckner151f6422023-02-10 12:45:19 +0100[diff] [blame]4996 "$P_CLI debug_level=4 force_version=tls13" \
Jan Bruckneraa31b192023-02-06 12:54:29 +0100[diff] [blame]4997 0 \
Yanray Wang42017cd2023-11-08 11:15:23 +0800[diff] [blame]4998 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy3a377562024-01-05 18:13:42 +0000[diff] [blame]4999 -c "ClientHello: record_size_limit(28) extension exists." \
Waleed Elmelegy3a377562024-01-05 18:13:42 +0000[diff] [blame]5000 -c "EncryptedExtensions: record_size_limit(28) extension received." \
Yanray Wang42017cd2023-11-08 11:15:23 +0800[diff] [blame]5001 -c "RecordSizeLimit: 16385 Bytes" \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5002
Waleed Elmelegyf5017902024-01-09 14:18:34 +0000[diff] [blame]5003# In the following tests, --recordsize is the value used by the G_NEXT_CLI (3.7.2) to configure the
5004# maximum record size using gnutls_record_set_max_size()
5005# (https://gnutls.org/reference/gnutls-gnutls.html#gnutls-record-set-max-size).
5006# There is currently a lower limit of 512, caused by gnutls_record_set_max_size()
5007# not respecting the "%ALLOW_SMALL_RECORDS" priority string and not using the
5008# more recent function gnutls_record_set_max_recv_size()
5009# (https://gnutls.org/reference/gnutls-gnutls.html#gnutls-record-set-max-recv-size).
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5010# There is currently an upper limit of 4096, caused by the cli arg parser:
5011# https://gitlab.com/gnutls/gnutls/-/blob/3.7.2/src/cli-args.def#L395.
Waleed Elmelegyf5017902024-01-09 14:18:34 +0000[diff] [blame]5012# Thus, these tests are currently limited to the value range 512-4096.
5013# Also, the value sent in the extension will be one larger than the value
5014# set at the command line:
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5015# https://gitlab.com/gnutls/gnutls/-/blob/3.7.2/lib/ext/record_size_limit.c#L142
Waleed Elmelegy9aec1c72023-12-05 20:08:51 +0000[diff] [blame]5016
5017# Currently test certificates being used do not fit in 513 record size limit
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5018# so for 513 record size limit tests we use preshared key to avoid sending
5019# the certificate.
Waleed Elmelegy9aec1c72023-12-05 20:08:51 +0000[diff] [blame]5020
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5021requires_gnutls_tls1_3
5022requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5023requires_config_enabled MBEDTLS_SSL_SRV_C
5024requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5025requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5026requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED
5027run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (513), 1 fragment" \
5028 "$P_SRV debug_level=3 force_version=tls13 tls13_kex_modes=psk \
5029 psk_list=Client_identity,6162636465666768696a6b6c6d6e6f70 \
5030 response_size=256" \
Waleed Elmelegy9457e672024-01-08 15:40:12 +0000[diff] [blame]5031 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+PSK --recordsize 512 \
5032 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70" \
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5033 0 \
5034 -s "RecordSizeLimit: 513 Bytes" \
Waleed Elmelegy9457e672024-01-08 15:40:12 +0000[diff] [blame]5035 -s "ClientHello: record_size_limit(28) extension exists." \
5036 -s "Sent RecordSizeLimit: 16384 Bytes" \
5037 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5038 -s "Maximum outgoing record payload length is 511" \
5039 -s "256 bytes written in 1 fragments"
Waleed Elmelegy9aec1c72023-12-05 20:08:51 +0000[diff] [blame]5040
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5041requires_gnutls_tls1_3
5042requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5043requires_config_enabled MBEDTLS_SSL_SRV_C
5044requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5045requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5046requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED
5047run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (513), 2 fragments" \
5048 "$P_SRV debug_level=3 force_version=tls13 tls13_kex_modes=psk \
5049 psk_list=Client_identity,6162636465666768696a6b6c6d6e6f70 \
5050 response_size=768" \
5051 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+PSK --recordsize 512 \
5052 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70" \
5053 0 \
5054 -s "RecordSizeLimit: 513 Bytes" \
Waleed Elmelegy9457e672024-01-08 15:40:12 +0000[diff] [blame]5055 -s "ClientHello: record_size_limit(28) extension exists." \
5056 -s "Sent RecordSizeLimit: 16384 Bytes" \
5057 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5058 -s "Maximum outgoing record payload length is 511" \
5059 -s "768 bytes written in 2 fragments"
Waleed Elmelegy9aec1c72023-12-05 20:08:51 +0000[diff] [blame]5060
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5061requires_gnutls_tls1_3
5062requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5063requires_config_enabled MBEDTLS_SSL_SRV_C
5064requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5065requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5066requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED
5067run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (513), 3 fragments" \
5068 "$P_SRV debug_level=3 force_version=tls13 tls13_kex_modes=psk \
5069 psk_list=Client_identity,6162636465666768696a6b6c6d6e6f70 \
5070 response_size=1280" \
5071 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+PSK --recordsize 512 \
5072 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70" \
5073 0 \
5074 -s "RecordSizeLimit: 513 Bytes" \
Waleed Elmelegy9457e672024-01-08 15:40:12 +0000[diff] [blame]5075 -s "ClientHello: record_size_limit(28) extension exists." \
5076 -s "Sent RecordSizeLimit: 16384 Bytes" \
5077 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Waleed Elmelegy87a373e2023-12-28 17:49:36 +0000[diff] [blame]5078 -s "Maximum outgoing record payload length is 511" \
5079 -s "1280 bytes written in 3 fragments"
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5080
5081requires_gnutls_tls1_3
5082requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5083requires_config_enabled MBEDTLS_SSL_SRV_C
5084requires_config_enabled MBEDTLS_DEBUG_C
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5085requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy60f0f722024-01-04 14:57:31 +0000[diff] [blame]5086requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5087run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (1024), 1 fragment" \
5088 "$P_SRV debug_level=3 force_version=tls13 response_size=512" \
5089 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3 -V -d 4 --recordsize 1023" \
5090 0 \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5091 -s "RecordSizeLimit: 1024 Bytes" \
5092 -s "ClientHello: record_size_limit(28) extension exists." \
Waleed Elmelegy47d29462024-01-03 17:31:52 +0000[diff] [blame]5093 -s "Sent RecordSizeLimit: 16384 Bytes" \
5094 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5095 -s "Maximum outgoing record payload length is 1023" \
5096 -s "512 bytes written in 1 fragments"
5097
5098requires_gnutls_tls1_3
5099requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5100requires_config_enabled MBEDTLS_SSL_SRV_C
5101requires_config_enabled MBEDTLS_DEBUG_C
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5102requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy60f0f722024-01-04 14:57:31 +0000[diff] [blame]5103requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5104run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (1024), 2 fragments" \
5105 "$P_SRV debug_level=3 force_version=tls13 response_size=1536" \
5106 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3 -V -d 4 --recordsize 1023" \
5107 0 \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5108 -s "RecordSizeLimit: 1024 Bytes" \
5109 -s "ClientHello: record_size_limit(28) extension exists." \
Waleed Elmelegy47d29462024-01-03 17:31:52 +0000[diff] [blame]5110 -s "Sent RecordSizeLimit: 16384 Bytes" \
5111 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5112 -s "Maximum outgoing record payload length is 1023" \
5113 -s "1536 bytes written in 2 fragments"
5114
5115requires_gnutls_tls1_3
5116requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5117requires_config_enabled MBEDTLS_SSL_SRV_C
5118requires_config_enabled MBEDTLS_DEBUG_C
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5119requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy60f0f722024-01-04 14:57:31 +0000[diff] [blame]5120requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5121run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (1024), 3 fragments" \
5122 "$P_SRV debug_level=3 force_version=tls13 response_size=2560" \
5123 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3 -V -d 4 --recordsize 1023" \
5124 0 \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5125 -s "RecordSizeLimit: 1024 Bytes" \
5126 -s "ClientHello: record_size_limit(28) extension exists." \
Waleed Elmelegy47d29462024-01-03 17:31:52 +0000[diff] [blame]5127 -s "Sent RecordSizeLimit: 16384 Bytes" \
5128 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5129 -s "Maximum outgoing record payload length is 1023" \
5130 -s "2560 bytes written in 3 fragments"
5131
5132requires_gnutls_tls1_3
5133requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5134requires_config_enabled MBEDTLS_SSL_SRV_C
5135requires_config_enabled MBEDTLS_DEBUG_C
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5136requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy60f0f722024-01-04 14:57:31 +0000[diff] [blame]5137requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5138run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (4096), 1 fragment" \
5139 "$P_SRV debug_level=3 force_version=tls13 response_size=2048" \
5140 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3 -V -d 4 --recordsize 4095" \
5141 0 \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5142 -s "RecordSizeLimit: 4096 Bytes" \
5143 -s "ClientHello: record_size_limit(28) extension exists." \
Waleed Elmelegy47d29462024-01-03 17:31:52 +0000[diff] [blame]5144 -s "Sent RecordSizeLimit: 16384 Bytes" \
5145 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5146 -s "Maximum outgoing record payload length is 4095" \
5147 -s "2048 bytes written in 1 fragments"
5148
5149requires_gnutls_tls1_3
5150requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5151requires_config_enabled MBEDTLS_SSL_SRV_C
5152requires_config_enabled MBEDTLS_DEBUG_C
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5153requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy60f0f722024-01-04 14:57:31 +0000[diff] [blame]5154requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5155run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (4096), 2 fragments" \
5156 "$P_SRV debug_level=3 force_version=tls13 response_size=6144" \
5157 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3 -V -d 4 --recordsize 4095" \
5158 0 \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5159 -s "RecordSizeLimit: 4096 Bytes" \
5160 -s "ClientHello: record_size_limit(28) extension exists." \
Waleed Elmelegy47d29462024-01-03 17:31:52 +0000[diff] [blame]5161 -s "Sent RecordSizeLimit: 16384 Bytes" \
5162 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5163 -s "Maximum outgoing record payload length is 4095" \
5164 -s "6144 bytes written in 2 fragments"
5165
5166requires_gnutls_tls1_3
5167requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5168requires_config_enabled MBEDTLS_SSL_SRV_C
5169requires_config_enabled MBEDTLS_DEBUG_C
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5170requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy60f0f722024-01-04 14:57:31 +0000[diff] [blame]5171requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5172run_test "Record Size Limit: TLS 1.3: Server complies with record size limit (4096), 3 fragments" \
5173 "$P_SRV debug_level=3 force_version=tls13 response_size=10240" \
5174 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3 -V -d 4 --recordsize 4095" \
5175 0 \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5176 -s "RecordSizeLimit: 4096 Bytes" \
5177 -s "ClientHello: record_size_limit(28) extension exists." \
Waleed Elmelegy598ea092024-01-03 17:34:03 +0000[diff] [blame]5178 -s "Sent RecordSizeLimit: 16384 Bytes" \
5179 -s "EncryptedExtensions: record_size_limit(28) extension exists." \
Jan Brucknerf482dcc2023-03-15 09:09:06 +0100[diff] [blame]5180 -s "Maximum outgoing record payload length is 4095" \
5181 -s "10240 bytes written in 3 fragments"
Jan Bruckneraa31b192023-02-06 12:54:29 +0100[diff] [blame]5182
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5183requires_gnutls_tls1_3
5184requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5185requires_config_enabled MBEDTLS_SSL_CLI_C
5186requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5187requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5188requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5189run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (513), 1 fragment" \
5190 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --disable-client-cert --recordsize 512" \
5191 "$P_CLI debug_level=4 force_version=tls13 request_size=256" \
5192 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5193 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5194 -c "ClientHello: record_size_limit(28) extension exists." \
5195 -c "RecordSizeLimit: 513 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5196 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5197 -c "Maximum outgoing record payload length is 511" \
5198 -c "256 bytes written in 1 fragments"
5199
5200requires_gnutls_tls1_3
5201requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5202requires_config_enabled MBEDTLS_SSL_CLI_C
5203requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5204requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5205requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5206run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (513), 2 fragments" \
5207 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --disable-client-cert --recordsize 512" \
5208 "$P_CLI debug_level=4 force_version=tls13 request_size=768" \
5209 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5210 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5211 -c "ClientHello: record_size_limit(28) extension exists." \
5212 -c "RecordSizeLimit: 513 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5213 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5214 -c "Maximum outgoing record payload length is 511" \
5215 -c "768 bytes written in 2 fragments"
5216
5217requires_gnutls_tls1_3
5218requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5219requires_config_enabled MBEDTLS_SSL_CLI_C
5220requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5221requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5222requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5223run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (513), 3 fragments" \
5224 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --disable-client-cert --recordsize 512" \
5225 "$P_CLI debug_level=4 force_version=tls13 request_size=1280" \
5226 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5227 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5228 -c "ClientHello: record_size_limit(28) extension exists." \
5229 -c "RecordSizeLimit: 513 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5230 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5231 -c "Maximum outgoing record payload length is 511" \
5232 -c "1280 bytes written in 3 fragments"
5233
5234requires_gnutls_tls1_3
5235requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5236requires_config_enabled MBEDTLS_SSL_CLI_C
5237requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5238requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5239requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5240run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (1024), 1 fragment" \
5241 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --recordsize 1023" \
5242 "$P_CLI debug_level=4 force_version=tls13 request_size=512" \
5243 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5244 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5245 -c "ClientHello: record_size_limit(28) extension exists." \
5246 -c "RecordSizeLimit: 1024 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5247 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5248 -c "Maximum outgoing record payload length is 1023" \
5249 -c "512 bytes written in 1 fragments"
5250
5251requires_gnutls_tls1_3
5252requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5253requires_config_enabled MBEDTLS_SSL_CLI_C
5254requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5255requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5256requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5257run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (1024), 2 fragments" \
5258 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --recordsize 1023" \
5259 "$P_CLI debug_level=4 force_version=tls13 request_size=1536" \
5260 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5261 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5262 -c "ClientHello: record_size_limit(28) extension exists." \
5263 -c "RecordSizeLimit: 1024 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5264 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5265 -c "Maximum outgoing record payload length is 1023" \
5266 -c "1536 bytes written in 2 fragments"
5267
5268requires_gnutls_tls1_3
5269requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5270requires_config_enabled MBEDTLS_SSL_CLI_C
5271requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5272requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5273requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5274run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (1024), 3 fragments" \
5275 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --recordsize 1023" \
5276 "$P_CLI debug_level=4 force_version=tls13 request_size=2560" \
5277 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5278 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5279 -c "ClientHello: record_size_limit(28) extension exists." \
5280 -c "RecordSizeLimit: 1024 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5281 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5282 -c "Maximum outgoing record payload length is 1023" \
5283 -c "2560 bytes written in 3 fragments"
5284
5285requires_gnutls_tls1_3
5286requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5287requires_config_enabled MBEDTLS_SSL_CLI_C
5288requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5289requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5290requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5291run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (4096), 1 fragment" \
5292 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --recordsize 4095" \
5293 "$P_CLI debug_level=4 force_version=tls13 request_size=2048" \
5294 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5295 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5296 -c "ClientHello: record_size_limit(28) extension exists." \
5297 -c "RecordSizeLimit: 4096 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5298 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5299 -c "Maximum outgoing record payload length is 4095" \
5300 -c "2048 bytes written in 1 fragments"
5301
5302requires_gnutls_tls1_3
5303requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5304requires_config_enabled MBEDTLS_SSL_CLI_C
5305requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5306requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5307requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5308run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (4096), 2 fragments" \
5309 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --recordsize 4095" \
5310 "$P_CLI debug_level=4 force_version=tls13 request_size=6144" \
5311 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5312 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5313 -c "ClientHello: record_size_limit(28) extension exists." \
5314 -c "RecordSizeLimit: 4096 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5315 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5316 -c "Maximum outgoing record payload length is 4095" \
5317 -c "6144 bytes written in 2 fragments"
5318
5319requires_gnutls_tls1_3
5320requires_gnutls_record_size_limit
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5321requires_config_enabled MBEDTLS_SSL_CLI_C
5322requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5323requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
5324requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5325run_test "Record Size Limit: TLS 1.3: Client complies with record size limit (4096), 3 fragments" \
5326 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL -d 4 --recordsize 4095" \
5327 "$P_CLI debug_level=4 force_version=tls13 request_size=10240" \
5328 0 \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5329 -c "Sent RecordSizeLimit: 16384 Bytes" \
Waleed Elmelegy14877602024-01-10 16:15:08 +0000[diff] [blame]5330 -c "ClientHello: record_size_limit(28) extension exists." \
5331 -c "RecordSizeLimit: 4096 Bytes" \
Waleed Elmelegy2fa99b22024-01-09 17:15:03 +0000[diff] [blame]5332 -c "EncryptedExtensions: record_size_limit(28) extension exists." \
5333 -c "Maximum outgoing record payload length is 4095" \
5334 -c "10240 bytes written in 3 fragments"
5335
Waleed Elmelegy598ea092024-01-03 17:34:03 +0000[diff] [blame]5336# TODO: For time being, we send fixed value of RecordSizeLimit defined by
5337# MBEDTLS_SSL_IN_CONTENT_LEN. Once we support variable buffer length of
5338# RecordSizeLimit, we need to modify value of RecordSizeLimit in below test.
Waleed Elmelegy3a377562024-01-05 18:13:42 +0000[diff] [blame]5339requires_config_value_equals "MBEDTLS_SSL_IN_CONTENT_LEN" 16384
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]5340requires_config_enabled MBEDTLS_SSL_CLI_C
5341requires_config_enabled MBEDTLS_SSL_SRV_C
5342requires_config_enabled MBEDTLS_DEBUG_C
Waleed Elmelegy598ea092024-01-03 17:34:03 +0000[diff] [blame]5343requires_config_enabled MBEDTLS_SSL_RECORD_SIZE_LIMIT
Waleed Elmelegy3a377562024-01-05 18:13:42 +0000[diff] [blame]5344requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
5345run_test "Record Size Limit: TLS 1.3 m->m: both peer comply with record size limit (default)" \
Waleed Elmelegy598ea092024-01-03 17:34:03 +0000[diff] [blame]5346 "$P_SRV debug_level=4 force_version=tls13" \
Waleed Elmelegy3a377562024-01-05 18:13:42 +0000[diff] [blame]5347 "$P_CLI debug_level=4" \
Waleed Elmelegy598ea092024-01-03 17:34:03 +0000[diff] [blame]5348 0 \
Waleed Elmelegy3a377562024-01-05 18:13:42 +0000[diff] [blame]5349 -c "Sent RecordSizeLimit: $MAX_IN_LEN Bytes" \
5350 -c "RecordSizeLimit: $MAX_IN_LEN Bytes" \
Waleed Elmelegy3a377562024-01-05 18:13:42 +0000[diff] [blame]5351 -s "RecordSizeLimit: $MAX_IN_LEN Bytes" \
5352 -s "Sent RecordSizeLimit: $MAX_IN_LEN Bytes" \
5353 -s "Maximum outgoing record payload length is 16383" \
Waleed Elmelegy598ea092024-01-03 17:34:03 +0000[diff] [blame]5354 -s "Maximum incoming record payload length is 16384"
5355
Waleed Elmelegyf5017902024-01-09 14:18:34 +0000[diff] [blame]5356# End of Record size limit tests
5357
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5358# Tests for renegotiation
5359
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5360# G_NEXT_SRV is used in renegotiation tests becuase of the increased
5361# extensions limit since we exceed the limit in G_SRV when we send
5362# TLS 1.3 extensions in the initial handshake.
5363
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5364# Renegotiation SCSV always added, regardless of SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5365run_test "Renegotiation: none, for reference" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5366 "$P_SRV debug_level=3 exchanges=2 auth_mode=optional" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5367 "$P_CLI force_version=tls12 debug_level=3 exchanges=2" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5368 0 \
5369 -C "client hello, adding renegotiation extension" \
5370 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5371 -S "found renegotiation extension" \
5372 -s "server hello, secure renegotiation extension" \
5373 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]5374 -C "=> renegotiate" \
5375 -S "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5376 -S "write hello request"
5377
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5378requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5379run_test "Renegotiation: client-initiated" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5380 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5381 "$P_CLI force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5382 0 \
5383 -c "client hello, adding renegotiation extension" \
5384 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5385 -s "found renegotiation extension" \
5386 -s "server hello, secure renegotiation extension" \
5387 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]5388 -c "=> renegotiate" \
5389 -s "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5390 -S "write hello request"
5391
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5392requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5393run_test "Renegotiation: server-initiated" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5394 "$P_SRV force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional renegotiate=1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5395 "$P_CLI debug_level=3 exchanges=2 renegotiation=1" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5396 0 \
5397 -c "client hello, adding renegotiation extension" \
5398 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5399 -s "found renegotiation extension" \
5400 -s "server hello, secure renegotiation extension" \
5401 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]5402 -c "=> renegotiate" \
5403 -s "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5404 -s "write hello request"
5405
Janos Follathb0f148c2017-10-05 12:29:42 +0100[diff] [blame]5406# Checks that no Signature Algorithm with SHA-1 gets negotiated. Negotiating SHA-1 would mean that
5407# the server did not parse the Signature Algorithm extension. This test is valid only if an MD
Bence Szépkútibb0cfeb2021-05-28 09:42:25 +0200[diff] [blame]5408# algorithm stronger than SHA-1 is enabled in mbedtls_config.h
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5409requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Janos Follathb0f148c2017-10-05 12:29:42 +0100[diff] [blame]5410run_test "Renegotiation: Signature Algorithms parsing, client-initiated" \
5411 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5412 "$P_CLI force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1" \
Janos Follathb0f148c2017-10-05 12:29:42 +0100[diff] [blame]5413 0 \
5414 -c "client hello, adding renegotiation extension" \
5415 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5416 -s "found renegotiation extension" \
5417 -s "server hello, secure renegotiation extension" \
5418 -c "found renegotiation extension" \
5419 -c "=> renegotiate" \
5420 -s "=> renegotiate" \
5421 -S "write hello request" \
5422 -S "client hello v3, signature_algorithm ext: 2" # Is SHA-1 negotiated?
5423
5424# Checks that no Signature Algorithm with SHA-1 gets negotiated. Negotiating SHA-1 would mean that
5425# the server did not parse the Signature Algorithm extension. This test is valid only if an MD
Bence Szépkútibb0cfeb2021-05-28 09:42:25 +0200[diff] [blame]5426# algorithm stronger than SHA-1 is enabled in mbedtls_config.h
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5427requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Janos Follathb0f148c2017-10-05 12:29:42 +0100[diff] [blame]5428run_test "Renegotiation: Signature Algorithms parsing, server-initiated" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5429 "$P_SRV force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional renegotiate=1" \
Janos Follathb0f148c2017-10-05 12:29:42 +0100[diff] [blame]5430 "$P_CLI debug_level=3 exchanges=2 renegotiation=1" \
5431 0 \
5432 -c "client hello, adding renegotiation extension" \
5433 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5434 -s "found renegotiation extension" \
5435 -s "server hello, secure renegotiation extension" \
5436 -c "found renegotiation extension" \
5437 -c "=> renegotiate" \
5438 -s "=> renegotiate" \
5439 -s "write hello request" \
5440 -S "client hello v3, signature_algorithm ext: 2" # Is SHA-1 negotiated?
5441
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5442requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5443run_test "Renegotiation: double" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5444 "$P_SRV debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional renegotiate=1" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5445 "$P_CLI force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5446 0 \
5447 -c "client hello, adding renegotiation extension" \
5448 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5449 -s "found renegotiation extension" \
5450 -s "server hello, secure renegotiation extension" \
5451 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]5452 -c "=> renegotiate" \
5453 -s "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5454 -s "write hello request"
5455
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5456requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Andrzej Kurek8ea68722020-04-03 06:40:47 -0400[diff] [blame]5457requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanob0a1c5b2021-07-02 10:10:49 +0100[diff] [blame]5458requires_max_content_len 2048
Andrzej Kurek8ea68722020-04-03 06:40:47 -0400[diff] [blame]5459run_test "Renegotiation with max fragment length: client 2048, server 512" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5460 "$P_SRV force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 auth_mode=optional renegotiate=1 max_frag_len=512" \
Andrzej Kurek8ea68722020-04-03 06:40:47 -0400[diff] [blame]5461 "$P_CLI debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 max_frag_len=2048 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
5462 0 \
Hanno Becker59d36702021-06-08 05:35:29 +0100[diff] [blame]5463 -c "Maximum incoming record payload length is 2048" \
5464 -c "Maximum outgoing record payload length is 2048" \
5465 -s "Maximum incoming record payload length is 2048" \
5466 -s "Maximum outgoing record payload length is 512" \
Andrzej Kurek8ea68722020-04-03 06:40:47 -0400[diff] [blame]5467 -c "client hello, adding max_fragment_length extension" \
5468 -s "found max fragment length extension" \
5469 -s "server hello, max_fragment_length extension" \
5470 -c "found max_fragment_length extension" \
5471 -c "client hello, adding renegotiation extension" \
5472 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5473 -s "found renegotiation extension" \
5474 -s "server hello, secure renegotiation extension" \
5475 -c "found renegotiation extension" \
5476 -c "=> renegotiate" \
5477 -s "=> renegotiate" \
5478 -s "write hello request"
5479
5480requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5481run_test "Renegotiation: client-initiated, server-rejected" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5482 "$P_SRV debug_level=3 exchanges=2 renegotiation=0 auth_mode=optional" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5483 "$P_CLI force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5484 1 \
5485 -c "client hello, adding renegotiation extension" \
5486 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5487 -S "found renegotiation extension" \
5488 -s "server hello, secure renegotiation extension" \
5489 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]5490 -c "=> renegotiate" \
5491 -S "=> renegotiate" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]5492 -S "write hello request" \
Manuel Pégourié-Gonnard65919622014-08-19 12:50:30 +0200[diff] [blame]5493 -c "SSL - Unexpected message at ServerHello in renegotiation" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]5494 -c "failed"
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5495
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5496requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5497run_test "Renegotiation: server-initiated, client-rejected, default" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5498 "$P_SRV force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5499 "$P_CLI debug_level=3 exchanges=2 renegotiation=0" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5500 0 \
5501 -C "client hello, adding renegotiation extension" \
5502 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5503 -S "found renegotiation extension" \
5504 -s "server hello, secure renegotiation extension" \
5505 -c "found renegotiation extension" \
Manuel Pégourié-Gonnardc73339f2014-02-26 16:35:27 +0100[diff] [blame]5506 -C "=> renegotiate" \
5507 -S "=> renegotiate" \
Manuel Pégourié-Gonnard780d6712014-02-20 17:19:59 +0100[diff] [blame]5508 -s "write hello request" \
Manuel Pégourié-Gonnarda9964db2014-07-03 19:29:16 +0200[diff] [blame]5509 -S "SSL - An unexpected message was received from our peer" \
5510 -S "failed"
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]5511
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5512requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5513run_test "Renegotiation: server-initiated, client-rejected, not enforced" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5514 "$P_SRV force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5515 renego_delay=-1 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5516 "$P_CLI debug_level=3 exchanges=2 renegotiation=0" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]5517 0 \
5518 -C "client hello, adding renegotiation extension" \
5519 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5520 -S "found renegotiation extension" \
5521 -s "server hello, secure renegotiation extension" \
5522 -c "found renegotiation extension" \
5523 -C "=> renegotiate" \
5524 -S "=> renegotiate" \
5525 -s "write hello request" \
5526 -S "SSL - An unexpected message was received from our peer" \
5527 -S "failed"
5528
Manuel Pégourié-Gonnarda8c0a0d2014-08-15 12:07:38 +0200[diff] [blame]5529# delay 2 for 1 alert record + 1 application data record
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5530requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5531run_test "Renegotiation: server-initiated, client-rejected, delay 2" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5532 "$P_SRV force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5533 renego_delay=2 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5534 "$P_CLI debug_level=3 exchanges=2 renegotiation=0" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]5535 0 \
5536 -C "client hello, adding renegotiation extension" \
5537 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5538 -S "found renegotiation extension" \
5539 -s "server hello, secure renegotiation extension" \
5540 -c "found renegotiation extension" \
5541 -C "=> renegotiate" \
5542 -S "=> renegotiate" \
5543 -s "write hello request" \
5544 -S "SSL - An unexpected message was received from our peer" \
5545 -S "failed"
5546
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5547requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5548run_test "Renegotiation: server-initiated, client-rejected, delay 0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5549 "$P_SRV force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5550 renego_delay=0 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5551 "$P_CLI debug_level=3 exchanges=2 renegotiation=0" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]5552 0 \
5553 -C "client hello, adding renegotiation extension" \
5554 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5555 -S "found renegotiation extension" \
5556 -s "server hello, secure renegotiation extension" \
5557 -c "found renegotiation extension" \
5558 -C "=> renegotiate" \
5559 -S "=> renegotiate" \
5560 -s "write hello request" \
Manuel Pégourié-Gonnarda8c0a0d2014-08-15 12:07:38 +0200[diff] [blame]5561 -s "SSL - An unexpected message was received from our peer"
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]5562
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5563requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5564run_test "Renegotiation: server-initiated, client-accepted, delay 0" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5565 "$P_SRV force_version=tls12 debug_level=3 exchanges=2 renegotiation=1 renegotiate=1 \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5566 renego_delay=0 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5567 "$P_CLI debug_level=3 exchanges=2 renegotiation=1" \
Manuel Pégourié-Gonnardfae355e2014-07-04 14:32:27 +0200[diff] [blame]5568 0 \
5569 -c "client hello, adding renegotiation extension" \
5570 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5571 -s "found renegotiation extension" \
5572 -s "server hello, secure renegotiation extension" \
5573 -c "found renegotiation extension" \
5574 -c "=> renegotiate" \
5575 -s "=> renegotiate" \
5576 -s "write hello request" \
5577 -S "SSL - An unexpected message was received from our peer" \
5578 -S "failed"
5579
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5580requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]5581run_test "Renegotiation: periodic, just below period" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5582 "$P_SRV debug_level=3 exchanges=9 renegotiation=1 renego_period=3 auth_mode=optional" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5583 "$P_CLI force_version=tls12 debug_level=3 exchanges=2 renegotiation=1" \
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]5584 0 \
5585 -C "client hello, adding renegotiation extension" \
5586 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5587 -S "found renegotiation extension" \
5588 -s "server hello, secure renegotiation extension" \
5589 -c "found renegotiation extension" \
5590 -S "record counter limit reached: renegotiate" \
5591 -C "=> renegotiate" \
5592 -S "=> renegotiate" \
5593 -S "write hello request" \
5594 -S "SSL - An unexpected message was received from our peer" \
5595 -S "failed"
5596
Manuel Pégourié-Gonnard9835bc02015-01-14 14:41:58 +0100[diff] [blame]5597# one extra exchange to be able to complete renego
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5598requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]5599run_test "Renegotiation: periodic, just above period" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5600 "$P_SRV force_version=tls12 debug_level=3 exchanges=9 renegotiation=1 renego_period=3 auth_mode=optional" \
Manuel Pégourié-Gonnard9835bc02015-01-14 14:41:58 +0100[diff] [blame]5601 "$P_CLI debug_level=3 exchanges=4 renegotiation=1" \
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]5602 0 \
5603 -c "client hello, adding renegotiation extension" \
5604 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5605 -s "found renegotiation extension" \
5606 -s "server hello, secure renegotiation extension" \
5607 -c "found renegotiation extension" \
5608 -s "record counter limit reached: renegotiate" \
5609 -c "=> renegotiate" \
5610 -s "=> renegotiate" \
5611 -s "write hello request" \
5612 -S "SSL - An unexpected message was received from our peer" \
5613 -S "failed"
5614
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5615requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]5616run_test "Renegotiation: periodic, two times period" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5617 "$P_SRV debug_level=3 exchanges=9 renegotiation=1 renego_period=3 auth_mode=optional" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5618 "$P_CLI force_version=tls12 debug_level=3 exchanges=7 renegotiation=1" \
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]5619 0 \
5620 -c "client hello, adding renegotiation extension" \
5621 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5622 -s "found renegotiation extension" \
5623 -s "server hello, secure renegotiation extension" \
5624 -c "found renegotiation extension" \
5625 -s "record counter limit reached: renegotiate" \
5626 -c "=> renegotiate" \
5627 -s "=> renegotiate" \
5628 -s "write hello request" \
5629 -S "SSL - An unexpected message was received from our peer" \
5630 -S "failed"
5631
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5632requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]5633run_test "Renegotiation: periodic, above period, disabled" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5634 "$P_SRV force_version=tls12 debug_level=3 exchanges=9 renegotiation=0 renego_period=3 auth_mode=optional" \
Manuel Pégourié-Gonnard590f4162014-11-05 14:23:03 +0100[diff] [blame]5635 "$P_CLI debug_level=3 exchanges=4 renegotiation=1" \
5636 0 \
5637 -C "client hello, adding renegotiation extension" \
5638 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5639 -S "found renegotiation extension" \
5640 -s "server hello, secure renegotiation extension" \
5641 -c "found renegotiation extension" \
5642 -S "record counter limit reached: renegotiate" \
5643 -C "=> renegotiate" \
5644 -S "=> renegotiate" \
5645 -S "write hello request" \
5646 -S "SSL - An unexpected message was received from our peer" \
5647 -S "failed"
5648
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5649requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5650run_test "Renegotiation: nbio, client-initiated" \
Manuel Pégourié-Gonnardfa44f202015-03-27 17:52:25 +0100[diff] [blame]5651 "$P_SRV debug_level=3 nbio=2 exchanges=2 renegotiation=1 auth_mode=optional" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5652 "$P_CLI force_version=tls12 debug_level=3 nbio=2 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnardf07f4212014-08-15 19:04:47 +0200[diff] [blame]5653 0 \
5654 -c "client hello, adding renegotiation extension" \
5655 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5656 -s "found renegotiation extension" \
5657 -s "server hello, secure renegotiation extension" \
5658 -c "found renegotiation extension" \
5659 -c "=> renegotiate" \
5660 -s "=> renegotiate" \
5661 -S "write hello request"
5662
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5663requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5664run_test "Renegotiation: nbio, server-initiated" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]5665 "$P_SRV force_version=tls12 debug_level=3 nbio=2 exchanges=2 renegotiation=1 renegotiate=1 auth_mode=optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5666 "$P_CLI debug_level=3 nbio=2 exchanges=2 renegotiation=1" \
Manuel Pégourié-Gonnardf07f4212014-08-15 19:04:47 +0200[diff] [blame]5667 0 \
5668 -c "client hello, adding renegotiation extension" \
5669 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5670 -s "found renegotiation extension" \
5671 -s "server hello, secure renegotiation extension" \
5672 -c "found renegotiation extension" \
5673 -c "=> renegotiate" \
5674 -s "=> renegotiate" \
5675 -s "write hello request"
5676
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5677requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5678requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5679run_test "Renegotiation: openssl server, client-initiated" \
Gilles Peskineed8cc462024-09-06 13:52:14 +0200[diff] [blame]5680 "$O_SRV -www $OPENSSL_S_SERVER_CLIENT_RENEGOTIATION -tls1_2" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5681 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard51362962014-08-30 21:22:47 +0200[diff] [blame]5682 0 \
5683 -c "client hello, adding renegotiation extension" \
5684 -c "found renegotiation extension" \
5685 -c "=> renegotiate" \
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]5686 -C "ssl_handshake() returned" \
Manuel Pégourié-Gonnard51362962014-08-30 21:22:47 +0200[diff] [blame]5687 -C "error" \
5688 -c "HTTP/1.0 200 [Oo][Kk]"
5689
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5690requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5691requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5692requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5693run_test "Renegotiation: gnutls server strict, client-initiated" \
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5694 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%SAFE_RENEGOTIATION" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]5695 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnard51362962014-08-30 21:22:47 +0200[diff] [blame]5696 0 \
5697 -c "client hello, adding renegotiation extension" \
5698 -c "found renegotiation extension" \
5699 -c "=> renegotiate" \
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]5700 -C "ssl_handshake() returned" \
Manuel Pégourié-Gonnard51362962014-08-30 21:22:47 +0200[diff] [blame]5701 -C "error" \
5702 -c "HTTP/1.0 200 [Oo][Kk]"
5703
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5704requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5705requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5706requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5707run_test "Renegotiation: gnutls server unsafe, client-initiated default" \
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5708 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%DISABLE_SAFE_RENEGOTIATION" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5709 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1" \
5710 1 \
5711 -c "client hello, adding renegotiation extension" \
5712 -C "found renegotiation extension" \
5713 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5714 -c "mbedtls_ssl_handshake() returned" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5715 -c "error" \
5716 -C "HTTP/1.0 200 [Oo][Kk]"
5717
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5718requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5719requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5720requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5721run_test "Renegotiation: gnutls server unsafe, client-inititated no legacy" \
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5722 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%DISABLE_SAFE_RENEGOTIATION" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5723 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1 \
5724 allow_legacy=0" \
5725 1 \
5726 -c "client hello, adding renegotiation extension" \
5727 -C "found renegotiation extension" \
5728 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5729 -c "mbedtls_ssl_handshake() returned" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5730 -c "error" \
5731 -C "HTTP/1.0 200 [Oo][Kk]"
5732
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5733requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5734requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5735requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5736run_test "Renegotiation: gnutls server unsafe, client-inititated legacy" \
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5737 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%DISABLE_SAFE_RENEGOTIATION" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5738 "$P_CLI debug_level=3 exchanges=1 renegotiation=1 renegotiate=1 \
5739 allow_legacy=1" \
5740 0 \
5741 -c "client hello, adding renegotiation extension" \
5742 -C "found renegotiation extension" \
5743 -c "=> renegotiate" \
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]5744 -C "ssl_handshake() returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]5745 -C "error" \
5746 -c "HTTP/1.0 200 [Oo][Kk]"
5747
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5748requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5749requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard30d16eb2014-08-19 17:43:50 +0200[diff] [blame]5750run_test "Renegotiation: DTLS, client-initiated" \
5751 "$P_SRV debug_level=3 dtls=1 exchanges=2 renegotiation=1" \
5752 "$P_CLI debug_level=3 dtls=1 exchanges=2 renegotiation=1 renegotiate=1" \
5753 0 \
5754 -c "client hello, adding renegotiation extension" \
5755 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5756 -s "found renegotiation extension" \
5757 -s "server hello, secure renegotiation extension" \
5758 -c "found renegotiation extension" \
5759 -c "=> renegotiate" \
5760 -s "=> renegotiate" \
5761 -S "write hello request"
5762
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5763requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5764requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardc392b242014-08-19 17:53:11 +0200[diff] [blame]5765run_test "Renegotiation: DTLS, server-initiated" \
5766 "$P_SRV debug_level=3 dtls=1 exchanges=2 renegotiation=1 renegotiate=1" \
Manuel Pégourié-Gonnarddf9a0a82014-10-02 14:17:18 +0200[diff] [blame]5767 "$P_CLI debug_level=3 dtls=1 exchanges=2 renegotiation=1 \
5768 read_timeout=1000 max_resend=2" \
Manuel Pégourié-Gonnardc392b242014-08-19 17:53:11 +0200[diff] [blame]5769 0 \
5770 -c "client hello, adding renegotiation extension" \
5771 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5772 -s "found renegotiation extension" \
5773 -s "server hello, secure renegotiation extension" \
5774 -c "found renegotiation extension" \
5775 -c "=> renegotiate" \
5776 -s "=> renegotiate" \
5777 -s "write hello request"
5778
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5779requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5780requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres AG692ad842017-01-19 16:30:57 +0000[diff] [blame]5781run_test "Renegotiation: DTLS, renego_period overflow" \
5782 "$P_SRV debug_level=3 dtls=1 exchanges=4 renegotiation=1 renego_period=18446462598732840962 auth_mode=optional" \
5783 "$P_CLI debug_level=3 dtls=1 exchanges=4 renegotiation=1" \
5784 0 \
5785 -c "client hello, adding renegotiation extension" \
5786 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
5787 -s "found renegotiation extension" \
5788 -s "server hello, secure renegotiation extension" \
5789 -s "record counter limit reached: renegotiate" \
5790 -c "=> renegotiate" \
5791 -s "=> renegotiate" \
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5792 -s "write hello request"
Andres AG692ad842017-01-19 16:30:57 +0000[diff] [blame]5793
Manuel Pégourié-Gonnard96999962015-02-17 16:02:37 +0000[diff] [blame]5794requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]5795requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5796requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardf1499f62014-08-31 17:13:13 +0200[diff] [blame]5797run_test "Renegotiation: DTLS, gnutls server, client-initiated" \
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5798 "$G_NEXT_SRV -u --mtu 4096" \
Manuel Pégourié-Gonnardf1499f62014-08-31 17:13:13 +0200[diff] [blame]5799 "$P_CLI debug_level=3 dtls=1 exchanges=1 renegotiation=1 renegotiate=1" \
5800 0 \
5801 -c "client hello, adding renegotiation extension" \
5802 -c "found renegotiation extension" \
5803 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5804 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardf1499f62014-08-31 17:13:13 +0200[diff] [blame]5805 -C "error" \
5806 -s "Extra-header:"
5807
Shaun Case8b0ecbc2021-12-20 21:14:10 -0800[diff] [blame]5808# Test for the "secure renegotiation" extension only (no actual renegotiation)
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5809
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5810requires_gnutls
Gilles Peskine21ad5762024-04-29 17:47:35 +0200[diff] [blame]5811requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5812requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5813run_test "Renego ext: gnutls server strict, client default" \
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5814 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%SAFE_RENEGOTIATION" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5815 "$P_CLI debug_level=3" \
5816 0 \
5817 -c "found renegotiation extension" \
5818 -C "error" \
5819 -c "HTTP/1.0 200 [Oo][Kk]"
5820
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5821requires_gnutls
Gilles Peskine21ad5762024-04-29 17:47:35 +0200[diff] [blame]5822requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5823requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5824run_test "Renego ext: gnutls server unsafe, client default" \
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5825 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%DISABLE_SAFE_RENEGOTIATION" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5826 "$P_CLI debug_level=3" \
5827 0 \
5828 -C "found renegotiation extension" \
5829 -C "error" \
5830 -c "HTTP/1.0 200 [Oo][Kk]"
5831
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5832requires_gnutls
Gilles Peskine21ad5762024-04-29 17:47:35 +0200[diff] [blame]5833requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5834requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5835run_test "Renego ext: gnutls server unsafe, client break legacy" \
Waleed Elmelegy4b09dcd2024-01-12 10:50:25 +0000[diff] [blame]5836 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%DISABLE_SAFE_RENEGOTIATION" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5837 "$P_CLI debug_level=3 allow_legacy=-1" \
5838 1 \
5839 -C "found renegotiation extension" \
5840 -c "error" \
5841 -C "HTTP/1.0 200 [Oo][Kk]"
5842
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5843requires_gnutls
Gilles Peskine21ad5762024-04-29 17:47:35 +0200[diff] [blame]5844requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5845requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5846run_test "Renego ext: gnutls client strict, server default" \
5847 "$P_SRV debug_level=3" \
Gilles Peskinee373c942024-04-29 17:44:19 +0200[diff] [blame]5848 "$G_CLI --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%SAFE_RENEGOTIATION localhost" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5849 0 \
5850 -s "received TLS_EMPTY_RENEGOTIATION_INFO\|found renegotiation extension" \
5851 -s "server hello, secure renegotiation extension"
5852
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5853requires_gnutls
Gilles Peskine21ad5762024-04-29 17:47:35 +0200[diff] [blame]5854requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5855requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5856run_test "Renego ext: gnutls client unsafe, server default" \
5857 "$P_SRV debug_level=3" \
Gilles Peskinee373c942024-04-29 17:44:19 +0200[diff] [blame]5858 "$G_CLI --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%DISABLE_SAFE_RENEGOTIATION localhost" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5859 0 \
5860 -S "received TLS_EMPTY_RENEGOTIATION_INFO\|found renegotiation extension" \
5861 -S "server hello, secure renegotiation extension"
5862
Paul Bakker539d9722015-02-08 16:18:35 +0100[diff] [blame]5863requires_gnutls
Gilles Peskine21ad5762024-04-29 17:47:35 +0200[diff] [blame]5864requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5865requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5866run_test "Renego ext: gnutls client unsafe, server break legacy" \
5867 "$P_SRV debug_level=3 allow_legacy=-1" \
Gilles Peskinee373c942024-04-29 17:44:19 +0200[diff] [blame]5868 "$G_CLI --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:%DISABLE_SAFE_RENEGOTIATION localhost" \
Manuel Pégourié-Gonnard85d915b2014-11-03 20:10:36 +0100[diff] [blame]5869 1 \
5870 -S "received TLS_EMPTY_RENEGOTIATION_INFO\|found renegotiation extension" \
5871 -S "server hello, secure renegotiation extension"
5872
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5873# Tests for silently dropping trailing extra bytes in .der certificates
5874
5875requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5876requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5877run_test "DER format: no trailing bytes" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]5878 "$P_SRV crt_file=$DATA_FILES_PATH/server5-der0.crt \
5879 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]5880 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5881 0 \
5882 -c "Handshake was completed" \
5883
5884requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5885requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5886run_test "DER format: with a trailing zero byte" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]5887 "$P_SRV crt_file=$DATA_FILES_PATH/server5-der1a.crt \
5888 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]5889 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5890 0 \
5891 -c "Handshake was completed" \
5892
5893requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5894requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5895run_test "DER format: with a trailing random byte" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]5896 "$P_SRV crt_file=$DATA_FILES_PATH/server5-der1b.crt \
5897 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]5898 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5899 0 \
5900 -c "Handshake was completed" \
5901
5902requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5903requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5904run_test "DER format: with 2 trailing random bytes" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]5905 "$P_SRV crt_file=$DATA_FILES_PATH/server5-der2.crt \
5906 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]5907 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5908 0 \
5909 -c "Handshake was completed" \
5910
5911requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5912requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5913run_test "DER format: with 4 trailing random bytes" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]5914 "$P_SRV crt_file=$DATA_FILES_PATH/server5-der4.crt \
5915 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]5916 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5917 0 \
5918 -c "Handshake was completed" \
5919
5920requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5921requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5922run_test "DER format: with 8 trailing random bytes" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]5923 "$P_SRV crt_file=$DATA_FILES_PATH/server5-der8.crt \
5924 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]5925 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5926 0 \
5927 -c "Handshake was completed" \
5928
5929requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]5930requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5931run_test "DER format: with 9 trailing random bytes" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]5932 "$P_SRV crt_file=$DATA_FILES_PATH/server5-der9.crt \
5933 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]5934 "$G_CLI localhost" \
Janos Follath0b242342016-02-17 10:11:21 +0000[diff] [blame]5935 0 \
5936 -c "Handshake was completed" \
5937
Jarno Lamsaf7a7f9e2019-04-01 15:11:54 +0300[diff] [blame]5938# Tests for auth_mode, there are duplicated tests using ca callback for authentication
5939# When updating these tests, modify the matching authentication tests accordingly
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]5940
Manuel Pégourié-Gonnardd6e20692024-08-05 12:41:59 +0200[diff] [blame]5941# The next 4 cases test the 3 auth modes with a badly signed server cert.
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5942run_test "Authentication: server badcert, client required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]5943 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
5944 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnardd6e20692024-08-05 12:41:59 +0200[diff] [blame]5945 "$P_CLI debug_level=3 auth_mode=required" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]5946 1 \
5947 -c "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]5948 -c "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5949 -c "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardd6e20692024-08-05 12:41:59 +0200[diff] [blame]5950 -c "send alert level=2 message=48" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]5951 -c "X509 - Certificate verification failed"
Manuel Pégourié-Gonnardd6e20692024-08-05 12:41:59 +0200[diff] [blame]5952 # MBEDTLS_X509_BADCERT_NOT_TRUSTED -> MBEDTLS_SSL_ALERT_MSG_UNKNOWN_CA
5953# We don't check that the server receives the alert because it might
5954# detect that its write end of the connection is closed and abort
5955# before reading the alert message.
5956
5957run_test "Authentication: server badcert, client required (1.2)" \
5958 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
5959 key_file=$DATA_FILES_PATH/server5.key" \
5960 "$P_CLI force_version=tls12 debug_level=3 auth_mode=required" \
5961 1 \
5962 -c "x509_verify_cert() returned" \
5963 -c "! The certificate is not correctly signed by the trusted CA" \
5964 -c "! mbedtls_ssl_handshake returned" \
5965 -c "send alert level=2 message=48" \
5966 -c "X509 - Certificate verification failed"
5967 # MBEDTLS_X509_BADCERT_NOT_TRUSTED -> MBEDTLS_SSL_ALERT_MSG_UNKNOWN_CA
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]5968
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]5969run_test "Authentication: server badcert, client optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]5970 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
5971 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnarde1cc9262024-08-14 09:47:38 +0200[diff] [blame]5972 "$P_CLI force_version=tls13 debug_level=3 auth_mode=optional" \
5973 0 \
5974 -c "x509_verify_cert() returned" \
5975 -c "! The certificate is not correctly signed by the trusted CA" \
5976 -C "! mbedtls_ssl_handshake returned" \
5977 -C "send alert level=2 message=48" \
5978 -C "X509 - Certificate verification failed"
5979
5980run_test "Authentication: server badcert, client optional (1.2)" \
5981 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
5982 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnardd6e20692024-08-05 12:41:59 +0200[diff] [blame]5983 "$P_CLI force_version=tls12 debug_level=3 auth_mode=optional" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]5984 0 \
5985 -c "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]5986 -c "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5987 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardd6e20692024-08-05 12:41:59 +0200[diff] [blame]5988 -C "send alert level=2 message=48" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]5989 -C "X509 - Certificate verification failed"
5990
Manuel Pégourié-Gonnarda3cf1a52024-08-05 11:21:01 +0200[diff] [blame]5991run_test "Authentication: server badcert, client none" \
5992 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
5993 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard2b98a4e2024-08-14 10:44:02 +0200[diff] [blame]5994 "$P_CLI debug_level=3 auth_mode=none" \
5995 0 \
5996 -C "x509_verify_cert() returned" \
5997 -C "! The certificate is not correctly signed by the trusted CA" \
5998 -C "! mbedtls_ssl_handshake returned" \
5999 -C "send alert level=2 message=48" \
6000 -C "X509 - Certificate verification failed"
6001
6002run_test "Authentication: server badcert, client none (1.2)" \
6003 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6004 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnardd6e20692024-08-05 12:41:59 +0200[diff] [blame]6005 "$P_CLI force_version=tls12 debug_level=3 auth_mode=none" \
Manuel Pégourié-Gonnarda3cf1a52024-08-05 11:21:01 +0200[diff] [blame]6006 0 \
6007 -C "x509_verify_cert() returned" \
6008 -C "! The certificate is not correctly signed by the trusted CA" \
6009 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardd6e20692024-08-05 12:41:59 +0200[diff] [blame]6010 -C "send alert level=2 message=48" \
Manuel Pégourié-Gonnarda3cf1a52024-08-05 11:21:01 +0200[diff] [blame]6011 -C "X509 - Certificate verification failed"
6012
Manuel Pégourié-Gonnarda0a781e2024-08-14 10:34:53 +0200[diff] [blame]6013run_test "Authentication: server goodcert, client required, no trusted CA" \
6014 "$P_SRV" \
6015 "$P_CLI debug_level=3 auth_mode=required ca_file=none ca_path=none" \
6016 1 \
6017 -c "x509_verify_cert() returned" \
6018 -c "! The certificate is not correctly signed by the trusted CA" \
6019 -c "! Certificate verification flags"\
6020 -c "! mbedtls_ssl_handshake returned" \
6021 -c "SSL - No CA Chain is set, but required to operate"
6022
6023requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
6024run_test "Authentication: server goodcert, client required, no trusted CA (1.2)" \
6025 "$P_SRV force_version=tls12" \
6026 "$P_CLI debug_level=3 auth_mode=required ca_file=none ca_path=none" \
6027 1 \
6028 -c "x509_verify_cert() returned" \
6029 -c "! The certificate is not correctly signed by the trusted CA" \
6030 -c "! Certificate verification flags"\
6031 -c "! mbedtls_ssl_handshake returned" \
6032 -c "SSL - No CA Chain is set, but required to operate"
Manuel Pégourié-Gonnarde1cc9262024-08-14 09:47:38 +0200[diff] [blame]6033
Hanno Beckere6706e62017-05-15 16:05:15 +0100[diff] [blame]6034run_test "Authentication: server goodcert, client optional, no trusted CA" \
6035 "$P_SRV" \
Manuel Pégourié-Gonnarde1cc9262024-08-14 09:47:38 +0200[diff] [blame]6036 "$P_CLI debug_level=3 auth_mode=optional ca_file=none ca_path=none" \
6037 0 \
6038 -c "x509_verify_cert() returned" \
6039 -c "! The certificate is not correctly signed by the trusted CA" \
6040 -c "! Certificate verification flags"\
6041 -C "! mbedtls_ssl_handshake returned" \
6042 -C "X509 - Certificate verification failed" \
6043 -C "SSL - No CA Chain is set, but required to operate"
6044
6045requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
6046run_test "Authentication: server goodcert, client optional, no trusted CA (1.2)" \
6047 "$P_SRV" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]6048 "$P_CLI force_version=tls12 debug_level=3 auth_mode=optional ca_file=none ca_path=none" \
Hanno Beckere6706e62017-05-15 16:05:15 +0100[diff] [blame]6049 0 \
6050 -c "x509_verify_cert() returned" \
6051 -c "! The certificate is not correctly signed by the trusted CA" \
6052 -c "! Certificate verification flags"\
6053 -C "! mbedtls_ssl_handshake returned" \
6054 -C "X509 - Certificate verification failed" \
6055 -C "SSL - No CA Chain is set, but required to operate"
6056
Manuel Pégourié-Gonnard2b98a4e2024-08-14 10:44:02 +0200[diff] [blame]6057run_test "Authentication: server goodcert, client none, no trusted CA" \
6058 "$P_SRV" \
6059 "$P_CLI debug_level=3 auth_mode=none ca_file=none ca_path=none" \
6060 0 \
6061 -C "x509_verify_cert() returned" \
6062 -C "! The certificate is not correctly signed by the trusted CA" \
6063 -C "! Certificate verification flags"\
6064 -C "! mbedtls_ssl_handshake returned" \
6065 -C "X509 - Certificate verification failed" \
6066 -C "SSL - No CA Chain is set, but required to operate"
6067
6068requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
6069run_test "Authentication: server goodcert, client none, no trusted CA (1.2)" \
6070 "$P_SRV" \
6071 "$P_CLI force_version=tls12 debug_level=3 auth_mode=none ca_file=none ca_path=none" \
6072 0 \
6073 -C "x509_verify_cert() returned" \
6074 -C "! The certificate is not correctly signed by the trusted CA" \
6075 -C "! Certificate verification flags"\
6076 -C "! mbedtls_ssl_handshake returned" \
6077 -C "X509 - Certificate verification failed" \
6078 -C "SSL - No CA Chain is set, but required to operate"
Manuel Pégourié-Gonnard060e2842024-08-05 11:10:47 +0200[diff] [blame]6079
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6080# The next few tests check what happens if the server has a valid certificate
6081# that does not match its name (impersonation).
6082
6083run_test "Authentication: hostname match, client required" \
6084 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6085 "$P_CLI auth_mode=required server_name=localhost debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6086 0 \
6087 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6088 -C "Certificate verification without having set hostname" \
6089 -C "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6090 -C "x509_verify_cert() returned -" \
6091 -C "! mbedtls_ssl_handshake returned" \
6092 -C "X509 - Certificate verification failed"
6093
Gilles Peskineda0e32e2025-02-13 21:46:00 +0100[diff] [blame]6094run_test "Authentication: hostname match, client required, CA callback" \
6095 "$P_SRV" \
6096 "$P_CLI auth_mode=required server_name=localhost debug_level=3 ca_callback=1" \
6097 0 \
6098 -C "does not match with the expected CN" \
6099 -C "Certificate verification without having set hostname" \
6100 -C "Certificate verification without CN verification" \
6101 -c "use CA callback for X.509 CRT verification" \
6102 -C "x509_verify_cert() returned -" \
6103 -C "! mbedtls_ssl_handshake returned" \
6104 -C "X509 - Certificate verification failed"
6105
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6106run_test "Authentication: hostname mismatch (wrong), client required" \
6107 "$P_SRV" \
6108 "$P_CLI auth_mode=required server_name=wrong-name debug_level=1" \
6109 1 \
6110 -c "does not match with the expected CN" \
6111 -c "x509_verify_cert() returned -" \
6112 -c "! mbedtls_ssl_handshake returned" \
6113 -c "X509 - Certificate verification failed"
6114
6115run_test "Authentication: hostname mismatch (empty), client required" \
6116 "$P_SRV" \
6117 "$P_CLI auth_mode=required server_name= debug_level=1" \
6118 1 \
6119 -c "does not match with the expected CN" \
6120 -c "x509_verify_cert() returned -" \
6121 -c "! mbedtls_ssl_handshake returned" \
6122 -c "X509 - Certificate verification failed"
6123
6124run_test "Authentication: hostname mismatch (truncated), client required" \
6125 "$P_SRV" \
6126 "$P_CLI auth_mode=required server_name=localhos debug_level=1" \
6127 1 \
6128 -c "does not match with the expected CN" \
6129 -c "x509_verify_cert() returned -" \
6130 -c "! mbedtls_ssl_handshake returned" \
6131 -c "X509 - Certificate verification failed"
6132
6133run_test "Authentication: hostname mismatch (last char), client required" \
6134 "$P_SRV" \
6135 "$P_CLI auth_mode=required server_name=localhoss debug_level=1" \
6136 1 \
6137 -c "does not match with the expected CN" \
6138 -c "x509_verify_cert() returned -" \
6139 -c "! mbedtls_ssl_handshake returned" \
6140 -c "X509 - Certificate verification failed"
6141
6142run_test "Authentication: hostname mismatch (trailing), client required" \
6143 "$P_SRV" \
6144 "$P_CLI auth_mode=required server_name=localhostt debug_level=1" \
6145 1 \
6146 -c "does not match with the expected CN" \
6147 -c "x509_verify_cert() returned -" \
6148 -c "! mbedtls_ssl_handshake returned" \
6149 -c "X509 - Certificate verification failed"
6150
6151run_test "Authentication: hostname mismatch, client optional" \
6152 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6153 "$P_CLI auth_mode=optional server_name=wrong-name debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6154 0 \
6155 -c "does not match with the expected CN" \
6156 -c "x509_verify_cert() returned -" \
6157 -C "X509 - Certificate verification failed"
6158
6159run_test "Authentication: hostname mismatch, client none" \
6160 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6161 "$P_CLI auth_mode=none server_name=wrong-name debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6162 0 \
6163 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6164 -C "Certificate verification without having set hostname" \
6165 -C "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6166 -C "x509_verify_cert() returned -" \
6167 -C "X509 - Certificate verification failed"
6168
6169run_test "Authentication: hostname null, client required" \
6170 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6171 "$P_CLI auth_mode=required set_hostname=NULL debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6172 0 \
6173 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6174 -C "Certificate verification without having set hostname" \
6175 -c "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6176 -C "x509_verify_cert() returned -" \
6177 -C "! mbedtls_ssl_handshake returned" \
6178 -C "X509 - Certificate verification failed"
6179
6180run_test "Authentication: hostname null, client optional" \
6181 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6182 "$P_CLI auth_mode=optional set_hostname=NULL debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6183 0 \
6184 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6185 -C "Certificate verification without having set hostname" \
6186 -c "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6187 -C "x509_verify_cert() returned -" \
6188 -C "X509 - Certificate verification failed"
6189
6190run_test "Authentication: hostname null, client none" \
6191 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6192 "$P_CLI auth_mode=none set_hostname=NULL debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6193 0 \
6194 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6195 -C "Certificate verification without having set hostname" \
6196 -C "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6197 -C "x509_verify_cert() returned -" \
6198 -C "X509 - Certificate verification failed"
6199
Gilles Peskine2c33c752025-02-13 14:39:02 +0100[diff] [blame]6200requires_config_disabled MBEDTLS_SSL_CLI_ALLOW_WEAK_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME
6201run_test "Authentication: hostname unset, client required, secure config" \
6202 "$P_SRV" \
6203 "$P_CLI auth_mode=required set_hostname=no debug_level=2" \
6204 1 \
6205 -C "does not match with the expected CN" \
6206 -c "Certificate verification without having set hostname" \
6207 -C "Certificate verification without CN verification" \
6208 -c "get_hostname_for_verification() returned -" \
6209 -C "x509_verify_cert() returned -" \
6210 -c "! mbedtls_ssl_handshake returned" \
6211 -C "X509 - Certificate verification failed"
6212
6213requires_config_enabled MBEDTLS_SSL_CLI_ALLOW_WEAK_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME
6214run_test "Authentication: hostname unset, client required, historical config" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6215 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6216 "$P_CLI auth_mode=required set_hostname=no debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6217 0 \
6218 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6219 -c "Certificate verification without having set hostname" \
6220 -c "Certificate verification without CN verification" \
Gilles Peskine2c33c752025-02-13 14:39:02 +0100[diff] [blame]6221 -C "get_hostname_for_verification() returned -" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6222 -C "x509_verify_cert() returned -" \
6223 -C "! mbedtls_ssl_handshake returned" \
6224 -C "X509 - Certificate verification failed"
6225
Gilles Peskineda0e32e2025-02-13 21:46:00 +0100[diff] [blame]6226requires_config_disabled MBEDTLS_SSL_CLI_ALLOW_WEAK_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME
6227run_test "Authentication: hostname unset, client required, secure config, CA callback" \
6228 "$P_SRV" \
6229 "$P_CLI auth_mode=required set_hostname=no debug_level=3 ca_callback=1" \
6230 1 \
6231 -C "does not match with the expected CN" \
6232 -c "Certificate verification without having set hostname" \
6233 -C "Certificate verification without CN verification" \
6234 -c "get_hostname_for_verification() returned -" \
6235 -C "use CA callback for X.509 CRT verification" \
6236 -C "x509_verify_cert() returned -" \
6237 -c "! mbedtls_ssl_handshake returned" \
6238 -C "X509 - Certificate verification failed"
6239
6240requires_config_enabled MBEDTLS_SSL_CLI_ALLOW_WEAK_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME
6241run_test "Authentication: hostname unset, client required, historical config, CA callback" \
6242 "$P_SRV" \
6243 "$P_CLI auth_mode=required set_hostname=no debug_level=3 ca_callback=1" \
6244 0 \
6245 -C "does not match with the expected CN" \
6246 -c "Certificate verification without having set hostname" \
6247 -c "Certificate verification without CN verification" \
6248 -C "get_hostname_for_verification() returned -" \
6249 -c "use CA callback for X.509 CRT verification" \
6250 -C "x509_verify_cert() returned -" \
6251 -C "! mbedtls_ssl_handshake returned" \
6252 -C "X509 - Certificate verification failed"
6253
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6254run_test "Authentication: hostname unset, client optional" \
6255 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6256 "$P_CLI auth_mode=optional set_hostname=no debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6257 0 \
6258 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6259 -c "Certificate verification without having set hostname" \
6260 -c "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6261 -C "x509_verify_cert() returned -" \
6262 -C "X509 - Certificate verification failed"
6263
6264run_test "Authentication: hostname unset, client none" \
6265 "$P_SRV" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6266 "$P_CLI auth_mode=none set_hostname=no debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6267 0 \
6268 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6269 -C "Certificate verification without having set hostname" \
6270 -C "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6271 -C "x509_verify_cert() returned -" \
6272 -C "X509 - Certificate verification failed"
6273
Gilles Peskine2c33c752025-02-13 14:39:02 +0100[diff] [blame]6274requires_config_disabled MBEDTLS_SSL_CLI_ALLOW_WEAK_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME
6275run_test "Authentication: hostname unset, client default, secure config, server picks cert, 1.2" \
6276 "$P_SRV force_version=tls12 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
6277 "$P_CLI psk=73776f726466697368 psk_identity=foo set_hostname=no debug_level=2" \
6278 1 \
6279 -C "does not match with the expected CN" \
6280 -c "Certificate verification without having set hostname" \
6281 -C "Certificate verification without CN verification" \
6282 -c "get_hostname_for_verification() returned -" \
6283 -C "x509_verify_cert() returned -" \
6284 -C "X509 - Certificate verification failed"
6285
6286requires_config_disabled MBEDTLS_SSL_CLI_ALLOW_WEAK_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME
6287requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
6288run_test "Authentication: hostname unset, client default, secure config, server picks cert, 1.3" \
6289 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral" \
6290 "$P_CLI psk=73776f726466697368 psk_identity=foo set_hostname=no debug_level=2" \
6291 1 \
6292 -C "does not match with the expected CN" \
6293 -c "Certificate verification without having set hostname" \
6294 -C "Certificate verification without CN verification" \
6295 -c "get_hostname_for_verification() returned -" \
6296 -C "x509_verify_cert() returned -" \
6297 -C "X509 - Certificate verification failed"
6298
6299requires_config_enabled MBEDTLS_SSL_CLI_ALLOW_WEAK_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME
6300run_test "Authentication: hostname unset, client default, historical config, server picks cert, 1.2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6301 "$P_SRV force_version=tls12 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6302 "$P_CLI psk=73776f726466697368 psk_identity=foo set_hostname=no debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6303 0 \
6304 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6305 -c "Certificate verification without having set hostname" \
6306 -c "Certificate verification without CN verification" \
Gilles Peskine2c33c752025-02-13 14:39:02 +0100[diff] [blame]6307 -C "get_hostname_for_verification() returned -" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6308 -C "x509_verify_cert() returned -" \
6309 -C "X509 - Certificate verification failed"
6310
Gilles Peskine2c33c752025-02-13 14:39:02 +0100[diff] [blame]6311requires_config_enabled MBEDTLS_SSL_CLI_ALLOW_WEAK_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6312requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gilles Peskine2c33c752025-02-13 14:39:02 +0100[diff] [blame]6313run_test "Authentication: hostname unset, client default, historical config, server picks cert, 1.3" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6314 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6315 "$P_CLI psk=73776f726466697368 psk_identity=foo set_hostname=no debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6316 0 \
6317 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6318 -c "Certificate verification without having set hostname" \
6319 -c "Certificate verification without CN verification" \
Gilles Peskine2c33c752025-02-13 14:39:02 +0100[diff] [blame]6320 -C "get_hostname_for_verification() returned -" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6321 -C "x509_verify_cert() returned -" \
6322 -C "X509 - Certificate verification failed"
6323
6324run_test "Authentication: hostname unset, client default, server picks PSK, 1.2" \
6325 "$P_SRV force_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8 psk=73776f726466697368 psk_identity=foo" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6326 "$P_CLI psk=73776f726466697368 psk_identity=foo set_hostname=no debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6327 0 \
6328 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6329 -C "Certificate verification without having set hostname" \
6330 -C "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6331 -C "x509_verify_cert() returned -" \
6332 -C "X509 - Certificate verification failed"
6333
6334requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED
6335run_test "Authentication: hostname unset, client default, server picks PSK, 1.3" \
6336 "$P_SRV force_version=tls13 tls13_kex_modes=psk psk=73776f726466697368 psk_identity=foo" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6337 "$P_CLI psk=73776f726466697368 psk_identity=foo set_hostname=no debug_level=2" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6338 0 \
6339 -C "does not match with the expected CN" \
Gilles Peskine6b885942025-02-12 23:53:25 +0100[diff] [blame]6340 -C "Certificate verification without having set hostname" \
6341 -C "Certificate verification without CN verification" \
Gilles Peskineb3de9da2025-02-12 21:50:53 +0100[diff] [blame]6342 -C "x509_verify_cert() returned -" \
6343 -C "X509 - Certificate verification failed"
6344
Hanno Beckere6706e62017-05-15 16:05:15 +0100[diff] [blame]6345# The purpose of the next two tests is to test the client's behaviour when receiving a server
6346# certificate with an unsupported elliptic curve. This should usually not happen because
6347# the client informs the server about the supported curves - it does, though, in the
6348# corner case of a static ECDH suite, because the server doesn't check the curve on that
6349# occasion (to be fixed). If that bug's fixed, the test needs to be altered to use a
6350# different means to have the server ignoring the client's supported curve list.
6351
Hanno Beckere6706e62017-05-15 16:05:15 +0100[diff] [blame]6352run_test "Authentication: server ECDH p256v1, client required, p256v1 unsupported" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6353 "$P_SRV debug_level=1 key_file=$DATA_FILES_PATH/server5.key \
6354 crt_file=$DATA_FILES_PATH/server5.ku-ka.crt" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]6355 "$P_CLI force_version=tls12 debug_level=3 auth_mode=required groups=secp521r1" \
Hanno Beckere6706e62017-05-15 16:05:15 +0100[diff] [blame]6356 1 \
6357 -c "bad certificate (EC key curve)"\
6358 -c "! Certificate verification flags"\
6359 -C "bad server certificate (ECDH curve)" # Expect failure at earlier verification stage
6360
Hanno Beckere6706e62017-05-15 16:05:15 +0100[diff] [blame]6361run_test "Authentication: server ECDH p256v1, client optional, p256v1 unsupported" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6362 "$P_SRV debug_level=1 key_file=$DATA_FILES_PATH/server5.key \
6363 crt_file=$DATA_FILES_PATH/server5.ku-ka.crt" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]6364 "$P_CLI force_version=tls12 debug_level=3 auth_mode=optional groups=secp521r1" \
Hanno Beckere6706e62017-05-15 16:05:15 +0100[diff] [blame]6365 1 \
6366 -c "bad certificate (EC key curve)"\
6367 -c "! Certificate verification flags"\
6368 -c "bad server certificate (ECDH curve)" # Expect failure only at ECDH params check
6369
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6370requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Simon Butcher99000142016-10-13 17:21:01 +0100[diff] [blame]6371run_test "Authentication: client SHA256, server required" \
6372 "$P_SRV auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6373 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server6.crt \
6374 key_file=$DATA_FILES_PATH/server6.key \
Simon Butcher99000142016-10-13 17:21:01 +0100[diff] [blame]6375 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384" \
6376 0 \
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]6377 -c "Supported Signature Algorithm found: 04 " \
6378 -c "Supported Signature Algorithm found: 05 "
Simon Butcher99000142016-10-13 17:21:01 +0100[diff] [blame]6379
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6380requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Simon Butcher99000142016-10-13 17:21:01 +0100[diff] [blame]6381run_test "Authentication: client SHA384, server required" \
6382 "$P_SRV auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6383 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server6.crt \
6384 key_file=$DATA_FILES_PATH/server6.key \
Simon Butcher99000142016-10-13 17:21:01 +0100[diff] [blame]6385 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
6386 0 \
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]6387 -c "Supported Signature Algorithm found: 04 " \
6388 -c "Supported Signature Algorithm found: 05 "
Simon Butcher99000142016-10-13 17:21:01 +0100[diff] [blame]6389
Gilles Peskinefd8332e2017-05-03 16:25:07 +0200[diff] [blame]6390run_test "Authentication: client has no cert, server required (TLS)" \
6391 "$P_SRV debug_level=3 auth_mode=required" \
6392 "$P_CLI debug_level=3 crt_file=none \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6393 key_file=$DATA_FILES_PATH/server5.key" \
Gilles Peskinefd8332e2017-05-03 16:25:07 +0200[diff] [blame]6394 1 \
6395 -S "skip write certificate request" \
6396 -C "skip parse certificate request" \
6397 -c "got a certificate request" \
6398 -c "= write certificate$" \
6399 -C "skip write certificate$" \
6400 -S "x509_verify_cert() returned" \
Ronald Cron19385882022-06-15 16:26:13 +0200[diff] [blame]6401 -s "peer has no certificate" \
Gilles Peskinefd8332e2017-05-03 16:25:07 +0200[diff] [blame]6402 -s "! mbedtls_ssl_handshake returned" \
Gilles Peskinefd8332e2017-05-03 16:25:07 +0200[diff] [blame]6403 -s "No client certification received from the client, but required by the authentication mode"
6404
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6405run_test "Authentication: client badcert, server required" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6406 "$P_SRV debug_level=3 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6407 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6408 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6409 1 \
6410 -S "skip write certificate request" \
6411 -C "skip parse certificate request" \
6412 -c "got a certificate request" \
6413 -C "skip write certificate" \
6414 -C "skip write certificate verify" \
6415 -S "skip parse certificate verify" \
6416 -s "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]6417 -s "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]6418 -s "! mbedtls_ssl_handshake returned" \
Gilles Peskine1cc8e342017-05-03 16:28:34 +0200[diff] [blame]6419 -s "send alert level=2 message=48" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6420 -s "X509 - Certificate verification failed"
Gilles Peskine1cc8e342017-05-03 16:28:34 +0200[diff] [blame]6421# We don't check that the client receives the alert because it might
6422# detect that its write end of the connection is closed and abort
6423# before reading the alert message.
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6424
Gilles Peskinee1cc60e2022-01-07 23:10:56 +0100[diff] [blame]6425run_test "Authentication: client cert self-signed and trusted, server required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6426 "$P_SRV debug_level=3 auth_mode=required ca_file=$DATA_FILES_PATH/server5-selfsigned.crt" \
6427 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-selfsigned.crt \
6428 key_file=$DATA_FILES_PATH/server5.key" \
Gilles Peskinee1cc60e2022-01-07 23:10:56 +0100[diff] [blame]6429 0 \
6430 -S "skip write certificate request" \
6431 -C "skip parse certificate request" \
6432 -c "got a certificate request" \
6433 -C "skip write certificate" \
6434 -C "skip write certificate verify" \
6435 -S "skip parse certificate verify" \
6436 -S "x509_verify_cert() returned" \
6437 -S "! The certificate is not correctly signed" \
6438 -S "X509 - Certificate verification failed"
6439
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6440run_test "Authentication: client cert not trusted, server required" \
6441 "$P_SRV debug_level=3 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6442 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-selfsigned.crt \
6443 key_file=$DATA_FILES_PATH/server5.key" \
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6444 1 \
6445 -S "skip write certificate request" \
6446 -C "skip parse certificate request" \
6447 -c "got a certificate request" \
6448 -C "skip write certificate" \
6449 -C "skip write certificate verify" \
6450 -S "skip parse certificate verify" \
6451 -s "x509_verify_cert() returned" \
6452 -s "! The certificate is not correctly signed by the trusted CA" \
6453 -s "! mbedtls_ssl_handshake returned" \
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6454 -s "X509 - Certificate verification failed"
6455
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6456run_test "Authentication: client badcert, server optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6457 "$P_SRV debug_level=3 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6458 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6459 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6460 0 \
6461 -S "skip write certificate request" \
6462 -C "skip parse certificate request" \
6463 -c "got a certificate request" \
6464 -C "skip write certificate" \
6465 -C "skip write certificate verify" \
6466 -S "skip parse certificate verify" \
6467 -s "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]6468 -s "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]6469 -S "! mbedtls_ssl_handshake returned" \
6470 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6471 -S "X509 - Certificate verification failed"
6472
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6473run_test "Authentication: client badcert, server none" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6474 "$P_SRV debug_level=3 auth_mode=none" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6475 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6476 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6477 0 \
6478 -s "skip write certificate request" \
6479 -C "skip parse certificate request" \
6480 -c "got no certificate request" \
6481 -c "skip write certificate" \
6482 -c "skip write certificate verify" \
6483 -s "skip parse certificate verify" \
6484 -S "x509_verify_cert() returned" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]6485 -S "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]6486 -S "! mbedtls_ssl_handshake returned" \
6487 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]6488 -S "X509 - Certificate verification failed"
6489
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6490run_test "Authentication: client no cert, server optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6491 "$P_SRV debug_level=3 auth_mode=optional" \
6492 "$P_CLI debug_level=3 crt_file=none key_file=none" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]6493 0 \
6494 -S "skip write certificate request" \
6495 -C "skip parse certificate request" \
6496 -c "got a certificate request" \
6497 -C "skip write certificate$" \
6498 -C "got no certificate to send" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]6499 -c "skip write certificate verify" \
6500 -s "skip parse certificate verify" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]6501 -s "! Certificate was missing" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]6502 -S "! mbedtls_ssl_handshake returned" \
6503 -C "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]6504 -S "X509 - Certificate verification failed"
6505
Przemek Stekielc31a7982023-06-27 10:53:33 +0200[diff] [blame]6506requires_openssl_tls1_3_with_compatible_ephemeral
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6507run_test "Authentication: openssl client no cert, server optional" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6508 "$P_SRV debug_level=3 auth_mode=optional" \
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]6509 "$O_NEXT_CLI_NO_CERT -no_middlebox" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]6510 0 \
6511 -S "skip write certificate request" \
6512 -s "skip parse certificate verify" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]6513 -s "! Certificate was missing" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]6514 -S "! mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]6515 -S "X509 - Certificate verification failed"
6516
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]6517requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6518run_test "Authentication: client no cert, openssl server optional" \
Ronald Croncbd7bfd2022-03-31 18:19:56 +0200[diff] [blame]6519 "$O_SRV -verify 10 -tls1_2" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]6520 "$P_CLI debug_level=3 crt_file=none key_file=none" \
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]6521 0 \
6522 -C "skip parse certificate request" \
6523 -c "got a certificate request" \
6524 -C "skip write certificate$" \
6525 -c "skip write certificate verify" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]6526 -C "! mbedtls_ssl_handshake returned"
Manuel Pégourié-Gonnardde515cc2014-02-27 14:58:26 +0100[diff] [blame]6527
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]6528requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskinefd8332e2017-05-03 16:25:07 +0200[diff] [blame]6529run_test "Authentication: client no cert, openssl server required" \
Ronald Croncbd7bfd2022-03-31 18:19:56 +0200[diff] [blame]6530 "$O_SRV -Verify 10 -tls1_2" \
Gilles Peskinefd8332e2017-05-03 16:25:07 +0200[diff] [blame]6531 "$P_CLI debug_level=3 crt_file=none key_file=none" \
6532 1 \
6533 -C "skip parse certificate request" \
6534 -c "got a certificate request" \
6535 -C "skip write certificate$" \
6536 -c "skip write certificate verify" \
6537 -c "! mbedtls_ssl_handshake returned"
6538
Yuto Takano02485822021-07-02 13:05:15 +0100[diff] [blame]6539# This script assumes that MBEDTLS_X509_MAX_INTERMEDIATE_CA has its default
6540# value, defined here as MAX_IM_CA. Some test cases will be skipped if the
6541# library is configured with a different value.
Hanno Beckera6bca9f2017-07-26 13:35:11 +0100[diff] [blame]6542
Simon Butcherbcfa6f42017-07-28 15:59:35 +0100[diff] [blame]6543MAX_IM_CA='8'
Hanno Beckera6bca9f2017-07-26 13:35:11 +0100[diff] [blame]6544
Yuto Takano02485822021-07-02 13:05:15 +0100[diff] [blame]6545# The tests for the max_int tests can pass with any number higher than MAX_IM_CA
6546# because only a chain of MAX_IM_CA length is tested. Equally, the max_int+1
6547# tests can pass with any number less than MAX_IM_CA. However, stricter preconditions
6548# are in place so that the semantics are consistent with the test description.
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6549requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]6550requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6551run_test "Authentication: server max_int chain, client default" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6552 "$P_SRV crt_file=$DATA_FILES_PATH/dir-maxpath/c09.pem \
6553 key_file=$DATA_FILES_PATH/dir-maxpath/09.key" \
6554 "$P_CLI server_name=CA09 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt" \
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6555 0 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]6556 -C "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6557
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6558requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]6559requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6560run_test "Authentication: server max_int+1 chain, client default" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6561 "$P_SRV crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6562 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
6563 "$P_CLI server_name=CA10 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt" \
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6564 1 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]6565 -c "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6566
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6567requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]6568requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6569run_test "Authentication: server max_int+1 chain, client optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6570 "$P_SRV crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6571 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
Manuel Pégourié-Gonnarde1cc9262024-08-14 09:47:38 +0200[diff] [blame]6572 "$P_CLI server_name=CA10 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt \
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6573 auth_mode=optional" \
6574 1 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]6575 -c "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6576
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6577requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]6578requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6579run_test "Authentication: server max_int+1 chain, client none" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6580 "$P_SRV crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6581 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
6582 "$P_CLI force_version=tls12 server_name=CA10 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt \
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6583 auth_mode=none" \
6584 0 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]6585 -C "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6586
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6587requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]6588requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6589run_test "Authentication: client max_int+1 chain, server default" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6590 "$P_SRV ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt" \
6591 "$P_CLI crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6592 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6593 0 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]6594 -S "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6595
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6596requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]6597requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6598run_test "Authentication: client max_int+1 chain, server optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6599 "$P_SRV ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt auth_mode=optional" \
6600 "$P_CLI crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6601 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6602 1 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]6603 -s "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6604
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6605requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]6606requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6607run_test "Authentication: client max_int+1 chain, server required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6608 "$P_SRV ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt auth_mode=required" \
6609 "$P_CLI crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6610 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6611 1 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]6612 -s "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6613
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6614requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]6615requires_full_size_output_buffer
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6616run_test "Authentication: client max_int chain, server required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6617 "$P_SRV ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt auth_mode=required" \
6618 "$P_CLI crt_file=$DATA_FILES_PATH/dir-maxpath/c09.pem \
6619 key_file=$DATA_FILES_PATH/dir-maxpath/09.key" \
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6620 0 \
Antonin Décimo36e89b52019-01-23 15:24:37 +0100[diff] [blame]6621 -S "X509 - A fatal error occurred"
Manuel Pégourié-Gonnard81bb6b62017-06-26 10:45:33 +0200[diff] [blame]6622
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6623# Tests for CA list in CertificateRequest messages
6624
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6625requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6626run_test "Authentication: send CA list in CertificateRequest (default)" \
6627 "$P_SRV debug_level=3 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6628 "$P_CLI force_version=tls12 crt_file=$DATA_FILES_PATH/server6.crt \
6629 key_file=$DATA_FILES_PATH/server6.key" \
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6630 0 \
6631 -s "requested DN"
6632
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6633requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6634run_test "Authentication: do not send CA list in CertificateRequest" \
6635 "$P_SRV debug_level=3 auth_mode=required cert_req_ca_list=0" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6636 "$P_CLI force_version=tls12 crt_file=$DATA_FILES_PATH/server6.crt \
6637 key_file=$DATA_FILES_PATH/server6.key" \
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6638 0 \
6639 -S "requested DN"
6640
6641run_test "Authentication: send CA list in CertificateRequest, client self signed" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]6642 "$P_SRV force_version=tls12 debug_level=3 auth_mode=required cert_req_ca_list=0" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6643 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-selfsigned.crt \
6644 key_file=$DATA_FILES_PATH/server5.key" \
Janos Follath89baba22017-04-10 14:34:35 +0100[diff] [blame]6645 1 \
6646 -S "requested DN" \
6647 -s "x509_verify_cert() returned" \
6648 -s "! The certificate is not correctly signed by the trusted CA" \
6649 -s "! mbedtls_ssl_handshake returned" \
6650 -c "! mbedtls_ssl_handshake returned" \
6651 -s "X509 - Certificate verification failed"
6652
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6653requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Glenn Straussbd10c4e2022-06-25 03:15:48 -0400[diff] [blame]6654run_test "Authentication: send alt conf DN hints in CertificateRequest" \
6655 "$P_SRV debug_level=3 auth_mode=optional cert_req_ca_list=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6656 crt_file2=$DATA_FILES_PATH/server1.crt \
6657 key_file2=$DATA_FILES_PATH/server1.key" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]6658 "$P_CLI force_version=tls12 debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6659 crt_file=$DATA_FILES_PATH/server6.crt \
6660 key_file=$DATA_FILES_PATH/server6.key" \
Glenn Straussbd10c4e2022-06-25 03:15:48 -0400[diff] [blame]6661 0 \
6662 -c "DN hint: C=NL, O=PolarSSL, CN=PolarSSL Server 1"
6663
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6664requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Glenn Straussbd10c4e2022-06-25 03:15:48 -0400[diff] [blame]6665run_test "Authentication: send alt conf DN hints in CertificateRequest (2)" \
6666 "$P_SRV debug_level=3 auth_mode=optional cert_req_ca_list=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6667 crt_file2=$DATA_FILES_PATH/server2.crt \
6668 key_file2=$DATA_FILES_PATH/server2.key" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]6669 "$P_CLI force_version=tls12 debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6670 crt_file=$DATA_FILES_PATH/server6.crt \
6671 key_file=$DATA_FILES_PATH/server6.key" \
Glenn Straussbd10c4e2022-06-25 03:15:48 -0400[diff] [blame]6672 0 \
6673 -c "DN hint: C=NL, O=PolarSSL, CN=localhost"
6674
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6675requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Glenn Straussbd10c4e2022-06-25 03:15:48 -0400[diff] [blame]6676run_test "Authentication: send alt hs DN hints in CertificateRequest" \
6677 "$P_SRV debug_level=3 auth_mode=optional cert_req_ca_list=3 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6678 crt_file2=$DATA_FILES_PATH/server1.crt \
6679 key_file2=$DATA_FILES_PATH/server1.key" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]6680 "$P_CLI force_version=tls12 debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6681 crt_file=$DATA_FILES_PATH/server6.crt \
6682 key_file=$DATA_FILES_PATH/server6.key" \
Glenn Straussbd10c4e2022-06-25 03:15:48 -0400[diff] [blame]6683 0 \
6684 -c "DN hint: C=NL, O=PolarSSL, CN=PolarSSL Server 1"
6685
Jarno Lamsaf7a7f9e2019-04-01 15:11:54 +0300[diff] [blame]6686# Tests for auth_mode, using CA callback, these are duplicated from the authentication tests
6687# When updating these tests, modify the matching authentication tests accordingly
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6688
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6689run_test "Authentication, CA callback: server badcert, client required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6690 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6691 key_file=$DATA_FILES_PATH/server5.key" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6692 "$P_CLI ca_callback=1 debug_level=3 auth_mode=required" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6693 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6694 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6695 -c "x509_verify_cert() returned" \
6696 -c "! The certificate is not correctly signed by the trusted CA" \
6697 -c "! mbedtls_ssl_handshake returned" \
6698 -c "X509 - Certificate verification failed"
6699
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6700run_test "Authentication, CA callback: server badcert, client optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6701 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6702 key_file=$DATA_FILES_PATH/server5.key" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6703 "$P_CLI ca_callback=1 debug_level=3 auth_mode=optional" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6704 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6705 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6706 -c "x509_verify_cert() returned" \
6707 -c "! The certificate is not correctly signed by the trusted CA" \
6708 -C "! mbedtls_ssl_handshake returned" \
6709 -C "X509 - Certificate verification failed"
6710
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6711run_test "Authentication, CA callback: server badcert, client none" \
6712 "$P_SRV crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6713 key_file=$DATA_FILES_PATH/server5.key" \
6714 "$P_CLI ca_callback=1 debug_level=3 auth_mode=none" \
6715 0 \
6716 -C "use CA callback for X.509 CRT verification" \
6717 -C "x509_verify_cert() returned" \
6718 -C "! The certificate is not correctly signed by the trusted CA" \
6719 -C "! mbedtls_ssl_handshake returned" \
6720 -C "X509 - Certificate verification failed"
6721
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6722# The purpose of the next two tests is to test the client's behaviour when receiving a server
6723# certificate with an unsupported elliptic curve. This should usually not happen because
6724# the client informs the server about the supported curves - it does, though, in the
6725# corner case of a static ECDH suite, because the server doesn't check the curve on that
6726# occasion (to be fixed). If that bug's fixed, the test needs to be altered to use a
6727# different means to have the server ignoring the client's supported curve list.
6728
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6729run_test "Authentication, CA callback: server ECDH p256v1, client required, p256v1 unsupported" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6730 "$P_SRV debug_level=1 key_file=$DATA_FILES_PATH/server5.key \
6731 crt_file=$DATA_FILES_PATH/server5.ku-ka.crt" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]6732 "$P_CLI force_version=tls12 ca_callback=1 debug_level=3 auth_mode=required groups=secp521r1" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6733 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6734 -c "use CA callback for X.509 CRT verification" \
6735 -c "bad certificate (EC key curve)" \
6736 -c "! Certificate verification flags" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6737 -C "bad server certificate (ECDH curve)" # Expect failure at earlier verification stage
6738
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6739run_test "Authentication, CA callback: server ECDH p256v1, client optional, p256v1 unsupported" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6740 "$P_SRV debug_level=1 key_file=$DATA_FILES_PATH/server5.key \
6741 crt_file=$DATA_FILES_PATH/server5.ku-ka.crt" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]6742 "$P_CLI force_version=tls12 ca_callback=1 debug_level=3 auth_mode=optional groups=secp521r1" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6743 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6744 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6745 -c "bad certificate (EC key curve)"\
6746 -c "! Certificate verification flags"\
6747 -c "bad server certificate (ECDH curve)" # Expect failure only at ECDH params check
6748
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6749requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron84442a32024-04-03 08:57:09 +0200[diff] [blame]6750run_test "Authentication, CA callback: client SHA384, server required" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6751 "$P_SRV ca_callback=1 debug_level=3 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6752 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server6.crt \
6753 key_file=$DATA_FILES_PATH/server6.key \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6754 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384" \
6755 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6756 -s "use CA callback for X.509 CRT verification" \
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]6757 -c "Supported Signature Algorithm found: 04 " \
6758 -c "Supported Signature Algorithm found: 05 "
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6759
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]6760requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron84442a32024-04-03 08:57:09 +0200[diff] [blame]6761run_test "Authentication, CA callback: client SHA256, server required" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6762 "$P_SRV ca_callback=1 debug_level=3 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6763 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server6.crt \
6764 key_file=$DATA_FILES_PATH/server6.key \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6765 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256" \
6766 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6767 -s "use CA callback for X.509 CRT verification" \
Andrzej Kurekec71b092022-11-15 10:21:50 -0500[diff] [blame]6768 -c "Supported Signature Algorithm found: 04 " \
6769 -c "Supported Signature Algorithm found: 05 "
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6770
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6771run_test "Authentication, CA callback: client badcert, server required" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6772 "$P_SRV ca_callback=1 debug_level=3 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6773 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6774 key_file=$DATA_FILES_PATH/server5.key" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6775 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6776 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6777 -S "skip write certificate request" \
6778 -C "skip parse certificate request" \
6779 -c "got a certificate request" \
6780 -C "skip write certificate" \
6781 -C "skip write certificate verify" \
6782 -S "skip parse certificate verify" \
6783 -s "x509_verify_cert() returned" \
6784 -s "! The certificate is not correctly signed by the trusted CA" \
6785 -s "! mbedtls_ssl_handshake returned" \
6786 -s "send alert level=2 message=48" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6787 -s "X509 - Certificate verification failed"
6788# We don't check that the client receives the alert because it might
6789# detect that its write end of the connection is closed and abort
6790# before reading the alert message.
6791
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6792run_test "Authentication, CA callback: client cert not trusted, server required" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6793 "$P_SRV ca_callback=1 debug_level=3 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6794 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-selfsigned.crt \
6795 key_file=$DATA_FILES_PATH/server5.key" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6796 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6797 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6798 -S "skip write certificate request" \
6799 -C "skip parse certificate request" \
6800 -c "got a certificate request" \
6801 -C "skip write certificate" \
6802 -C "skip write certificate verify" \
6803 -S "skip parse certificate verify" \
6804 -s "x509_verify_cert() returned" \
6805 -s "! The certificate is not correctly signed by the trusted CA" \
6806 -s "! mbedtls_ssl_handshake returned" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6807 -s "X509 - Certificate verification failed"
6808
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6809run_test "Authentication, CA callback: client badcert, server optional" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6810 "$P_SRV ca_callback=1 debug_level=3 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6811 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
6812 key_file=$DATA_FILES_PATH/server5.key" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6813 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6814 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6815 -S "skip write certificate request" \
6816 -C "skip parse certificate request" \
6817 -c "got a certificate request" \
6818 -C "skip write certificate" \
6819 -C "skip write certificate verify" \
6820 -S "skip parse certificate verify" \
6821 -s "x509_verify_cert() returned" \
6822 -s "! The certificate is not correctly signed by the trusted CA" \
6823 -S "! mbedtls_ssl_handshake returned" \
6824 -C "! mbedtls_ssl_handshake returned" \
6825 -S "X509 - Certificate verification failed"
6826
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6827requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6828requires_full_size_output_buffer
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6829run_test "Authentication, CA callback: server max_int chain, client default" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6830 "$P_SRV crt_file=$DATA_FILES_PATH/dir-maxpath/c09.pem \
6831 key_file=$DATA_FILES_PATH/dir-maxpath/09.key" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6832 "$P_CLI ca_callback=1 debug_level=3 server_name=CA09 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6833 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6834 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6835 -C "X509 - A fatal error occurred"
6836
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6837requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6838requires_full_size_output_buffer
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6839run_test "Authentication, CA callback: server max_int+1 chain, client default" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6840 "$P_SRV crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6841 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6842 "$P_CLI debug_level=3 ca_callback=1 server_name=CA10 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6843 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6844 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6845 -c "X509 - A fatal error occurred"
6846
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6847requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6848requires_full_size_output_buffer
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6849run_test "Authentication, CA callback: server max_int+1 chain, client optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6850 "$P_SRV crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6851 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6852 "$P_CLI ca_callback=1 server_name=CA10 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6853 debug_level=3 auth_mode=optional" \
6854 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6855 -c "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6856 -c "X509 - A fatal error occurred"
6857
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6858requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6859requires_full_size_output_buffer
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6860run_test "Authentication, CA callback: client max_int+1 chain, server optional" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6861 "$P_SRV ca_callback=1 debug_level=3 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6862 "$P_CLI crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6863 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6864 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6865 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6866 -s "X509 - A fatal error occurred"
6867
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6868requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6869requires_full_size_output_buffer
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6870run_test "Authentication, CA callback: client max_int+1 chain, server required" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6871 "$P_SRV ca_callback=1 debug_level=3 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6872 "$P_CLI crt_file=$DATA_FILES_PATH/dir-maxpath/c10.pem \
6873 key_file=$DATA_FILES_PATH/dir-maxpath/10.key" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6874 1 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6875 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6876 -s "X509 - A fatal error occurred"
6877
Yuto Takano6f657432021-07-02 13:10:41 +0100[diff] [blame]6878requires_config_value_equals "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6879requires_full_size_output_buffer
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6880run_test "Authentication, CA callback: client max_int chain, server required" \
Ronald Cron8d5da8f2024-04-03 09:10:02 +0200[diff] [blame]6881 "$P_SRV ca_callback=1 debug_level=3 ca_file=$DATA_FILES_PATH/dir-maxpath/00.crt auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6882 "$P_CLI crt_file=$DATA_FILES_PATH/dir-maxpath/c09.pem \
6883 key_file=$DATA_FILES_PATH/dir-maxpath/09.key" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6884 0 \
Janos Follathd7ecbd62019-04-05 14:52:17 +0100[diff] [blame]6885 -s "use CA callback for X.509 CRT verification" \
Hanno Becker746aaf32019-03-28 15:25:23 +0000[diff] [blame]6886 -S "X509 - A fatal error occurred"
6887
Shaun Case8b0ecbc2021-12-20 21:14:10 -0800[diff] [blame]6888# Tests for certificate selection based on SHA version
Manuel Pégourié-Gonnarddf331a52015-01-08 16:43:07 +0100[diff] [blame]6889
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]6890requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnarddf331a52015-01-08 16:43:07 +0100[diff] [blame]6891run_test "Certificate hash: client TLS 1.2 -> SHA-2" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6892 "$P_SRV force_version=tls12 crt_file=$DATA_FILES_PATH/server5.crt \
6893 key_file=$DATA_FILES_PATH/server5.key \
6894 crt_file2=$DATA_FILES_PATH/server5-sha1.crt \
6895 key_file2=$DATA_FILES_PATH/server5.key" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]6896 "$P_CLI" \
Manuel Pégourié-Gonnarddf331a52015-01-08 16:43:07 +0100[diff] [blame]6897 0 \
6898 -c "signed using.*ECDSA with SHA256" \
6899 -C "signed using.*ECDSA with SHA1"
6900
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]6901# tests for SNI
6902
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]6903requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6904run_test "SNI: no SNI callback" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]6905 "$P_SRV debug_level=3 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6906 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]6907 "$P_CLI server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]6908 0 \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]6909 -c "issuer name *: C=NL, O=PolarSSL, CN=Polarssl Test EC CA" \
6910 -c "subject name *: C=NL, O=PolarSSL, CN=localhost"
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]6911
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]6912requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6913run_test "SNI: matching cert 1" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]6914 "$P_SRV debug_level=3 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6915 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
6916 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]6917 "$P_CLI server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]6918 0 \
6919 -s "parse ServerName extension" \
6920 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
6921 -c "subject name *: C=NL, O=PolarSSL, CN=localhost"
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]6922
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]6923requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6924run_test "SNI: matching cert 2" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]6925 "$P_SRV debug_level=3 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6926 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
6927 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]6928 "$P_CLI server_name=polarssl.example" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]6929 0 \
6930 -s "parse ServerName extension" \
6931 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
6932 -c "subject name *: C=NL, O=PolarSSL, CN=polarssl.example"
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]6933
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]6934requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]6935run_test "SNI: no matching cert" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]6936 "$P_SRV debug_level=3 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6937 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
6938 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]6939 "$P_CLI server_name=nonesuch.example" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]6940 1 \
6941 -s "parse ServerName extension" \
6942 -s "ssl_sni_wrapper() returned" \
6943 -s "mbedtls_ssl_handshake returned" \
6944 -c "mbedtls_ssl_handshake returned" \
6945 -c "SSL - A fatal alert message was received from our peer"
Manuel Pégourié-Gonnard96ea2f22014-02-25 12:26:29 +0100[diff] [blame]6946
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]6947run_test "SNI: client auth no override: optional" \
6948 "$P_SRV debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6949 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
6950 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-" \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]6951 "$P_CLI debug_level=3 server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]6952 0 \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]6953 -S "skip write certificate request" \
6954 -C "skip parse certificate request" \
6955 -c "got a certificate request" \
6956 -C "skip write certificate" \
6957 -C "skip write certificate verify" \
6958 -S "skip parse certificate verify"
6959
6960run_test "SNI: client auth override: none -> optional" \
6961 "$P_SRV debug_level=3 auth_mode=none \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6962 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
6963 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,optional" \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]6964 "$P_CLI debug_level=3 server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]6965 0 \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]6966 -S "skip write certificate request" \
6967 -C "skip parse certificate request" \
6968 -c "got a certificate request" \
6969 -C "skip write certificate" \
6970 -C "skip write certificate verify" \
6971 -S "skip parse certificate verify"
6972
6973run_test "SNI: client auth override: optional -> none" \
6974 "$P_SRV debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6975 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
6976 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,none" \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]6977 "$P_CLI debug_level=3 server_name=localhost" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]6978 0 \
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]6979 -s "skip write certificate request" \
6980 -C "skip parse certificate request" \
6981 -c "got no certificate request" \
XiaokangQian23c5be62022-06-07 02:04:34 +0000[diff] [blame]6982 -c "skip write certificate"
Manuel Pégourié-Gonnardc948a792015-06-22 16:04:20 +0200[diff] [blame]6983
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]6984run_test "SNI: CA no override" \
6985 "$P_SRV debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6986 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
6987 ca_file=$DATA_FILES_PATH/test-ca.crt \
6988 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,required" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]6989 "$P_CLI debug_level=3 server_name=localhost \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]6990 crt_file=$DATA_FILES_PATH/server6.crt key_file=$DATA_FILES_PATH/server6.key" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]6991 1 \
6992 -S "skip write certificate request" \
6993 -C "skip parse certificate request" \
6994 -c "got a certificate request" \
6995 -C "skip write certificate" \
6996 -C "skip write certificate verify" \
6997 -S "skip parse certificate verify" \
6998 -s "x509_verify_cert() returned" \
6999 -s "! The certificate is not correctly signed by the trusted CA" \
7000 -S "The certificate has been revoked (is on a CRL)"
7001
7002run_test "SNI: CA override" \
7003 "$P_SRV debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7004 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7005 ca_file=$DATA_FILES_PATH/test-ca.crt \
7006 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,$DATA_FILES_PATH/test-ca2.crt,-,required" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7007 "$P_CLI debug_level=3 server_name=localhost \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7008 crt_file=$DATA_FILES_PATH/server6.crt key_file=$DATA_FILES_PATH/server6.key" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7009 0 \
7010 -S "skip write certificate request" \
7011 -C "skip parse certificate request" \
7012 -c "got a certificate request" \
7013 -C "skip write certificate" \
7014 -C "skip write certificate verify" \
7015 -S "skip parse certificate verify" \
7016 -S "x509_verify_cert() returned" \
7017 -S "! The certificate is not correctly signed by the trusted CA" \
7018 -S "The certificate has been revoked (is on a CRL)"
7019
7020run_test "SNI: CA override with CRL" \
7021 "$P_SRV debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7022 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7023 ca_file=$DATA_FILES_PATH/test-ca.crt \
7024 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,$DATA_FILES_PATH/test-ca2.crt,$DATA_FILES_PATH/crl-ec-sha256.pem,required" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7025 "$P_CLI debug_level=3 server_name=localhost \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7026 crt_file=$DATA_FILES_PATH/server6.crt key_file=$DATA_FILES_PATH/server6.key" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7027 1 \
7028 -S "skip write certificate request" \
7029 -C "skip parse certificate request" \
7030 -c "got a certificate request" \
7031 -C "skip write certificate" \
7032 -C "skip write certificate verify" \
7033 -S "skip parse certificate verify" \
7034 -s "x509_verify_cert() returned" \
7035 -S "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard4192bba2024-08-05 12:44:57 +0200[diff] [blame]7036 -s "send alert level=2 message=44" \
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7037 -s "The certificate has been revoked (is on a CRL)"
Manuel Pégourié-Gonnard4192bba2024-08-05 12:44:57 +0200[diff] [blame]7038 # MBEDTLS_X509_BADCERT_REVOKED -> MBEDTLS_SSL_ALERT_MSG_CERT_REVOKED
Manuel Pégourié-Gonnard6ea831d2015-06-22 16:50:52 +0200[diff] [blame]7039
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7040# Tests for SNI and DTLS
7041
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]7042requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7043requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7044run_test "SNI: DTLS, no SNI callback" \
7045 "$P_SRV debug_level=3 dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7046 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key" \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7047 "$P_CLI server_name=localhost dtls=1" \
7048 0 \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7049 -c "issuer name *: C=NL, O=PolarSSL, CN=Polarssl Test EC CA" \
7050 -c "subject name *: C=NL, O=PolarSSL, CN=localhost"
7051
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]7052requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7053requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garciaf77d3d32018-05-01 20:26:47 +0100[diff] [blame]7054run_test "SNI: DTLS, matching cert 1" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7055 "$P_SRV debug_level=3 dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7056 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7057 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7058 "$P_CLI server_name=localhost dtls=1" \
7059 0 \
7060 -s "parse ServerName extension" \
7061 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
7062 -c "subject name *: C=NL, O=PolarSSL, CN=localhost"
7063
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]7064requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7065requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7066run_test "SNI: DTLS, matching cert 2" \
7067 "$P_SRV debug_level=3 dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7068 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7069 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7070 "$P_CLI server_name=polarssl.example dtls=1" \
7071 0 \
7072 -s "parse ServerName extension" \
7073 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
7074 -c "subject name *: C=NL, O=PolarSSL, CN=polarssl.example"
7075
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7076requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7077run_test "SNI: DTLS, no matching cert" \
7078 "$P_SRV debug_level=3 dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7079 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7080 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7081 "$P_CLI server_name=nonesuch.example dtls=1" \
7082 1 \
7083 -s "parse ServerName extension" \
7084 -s "ssl_sni_wrapper() returned" \
7085 -s "mbedtls_ssl_handshake returned" \
7086 -c "mbedtls_ssl_handshake returned" \
7087 -c "SSL - A fatal alert message was received from our peer"
7088
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7089requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7090run_test "SNI: DTLS, client auth no override: optional" \
7091 "$P_SRV debug_level=3 auth_mode=optional dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7092 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7093 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-" \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7094 "$P_CLI debug_level=3 server_name=localhost dtls=1" \
7095 0 \
7096 -S "skip write certificate request" \
7097 -C "skip parse certificate request" \
7098 -c "got a certificate request" \
7099 -C "skip write certificate" \
7100 -C "skip write certificate verify" \
7101 -S "skip parse certificate verify"
7102
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7103requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7104run_test "SNI: DTLS, client auth override: none -> optional" \
7105 "$P_SRV debug_level=3 auth_mode=none dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7106 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7107 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,optional" \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7108 "$P_CLI debug_level=3 server_name=localhost dtls=1" \
7109 0 \
7110 -S "skip write certificate request" \
7111 -C "skip parse certificate request" \
7112 -c "got a certificate request" \
7113 -C "skip write certificate" \
7114 -C "skip write certificate verify" \
7115 -S "skip parse certificate verify"
7116
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7117requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7118run_test "SNI: DTLS, client auth override: optional -> none" \
7119 "$P_SRV debug_level=3 auth_mode=optional dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7120 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7121 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,none" \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7122 "$P_CLI debug_level=3 server_name=localhost dtls=1" \
7123 0 \
7124 -s "skip write certificate request" \
7125 -C "skip parse certificate request" \
7126 -c "got no certificate request" \
7127 -c "skip write certificate" \
7128 -c "skip write certificate verify" \
7129 -s "skip parse certificate verify"
7130
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7131requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7132run_test "SNI: DTLS, CA no override" \
7133 "$P_SRV debug_level=3 auth_mode=optional dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7134 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7135 ca_file=$DATA_FILES_PATH/test-ca.crt \
7136 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,required" \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7137 "$P_CLI debug_level=3 server_name=localhost dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7138 crt_file=$DATA_FILES_PATH/server6.crt key_file=$DATA_FILES_PATH/server6.key" \
Andres Amaya Garcia54306c12018-05-01 20:27:37 +0100[diff] [blame]7139 1 \
7140 -S "skip write certificate request" \
7141 -C "skip parse certificate request" \
7142 -c "got a certificate request" \
7143 -C "skip write certificate" \
7144 -C "skip write certificate verify" \
7145 -S "skip parse certificate verify" \
7146 -s "x509_verify_cert() returned" \
7147 -s "! The certificate is not correctly signed by the trusted CA" \
7148 -S "The certificate has been revoked (is on a CRL)"
7149
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7150requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garciaf77d3d32018-05-01 20:26:47 +0100[diff] [blame]7151run_test "SNI: DTLS, CA override" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7152 "$P_SRV debug_level=3 auth_mode=optional dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7153 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
7154 ca_file=$DATA_FILES_PATH/test-ca.crt \
7155 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,$DATA_FILES_PATH/test-ca2.crt,-,required" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7156 "$P_CLI debug_level=3 server_name=localhost dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7157 crt_file=$DATA_FILES_PATH/server6.crt key_file=$DATA_FILES_PATH/server6.key" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7158 0 \
7159 -S "skip write certificate request" \
7160 -C "skip parse certificate request" \
7161 -c "got a certificate request" \
7162 -C "skip write certificate" \
7163 -C "skip write certificate verify" \
7164 -S "skip parse certificate verify" \
7165 -S "x509_verify_cert() returned" \
7166 -S "! The certificate is not correctly signed by the trusted CA" \
7167 -S "The certificate has been revoked (is on a CRL)"
7168
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7169requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andres Amaya Garciaf77d3d32018-05-01 20:26:47 +0100[diff] [blame]7170run_test "SNI: DTLS, CA override with CRL" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7171 "$P_SRV debug_level=3 auth_mode=optional \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7172 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key dtls=1 \
7173 ca_file=$DATA_FILES_PATH/test-ca.crt \
7174 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,$DATA_FILES_PATH/test-ca2.crt,$DATA_FILES_PATH/crl-ec-sha256.pem,required" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7175 "$P_CLI debug_level=3 server_name=localhost dtls=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]7176 crt_file=$DATA_FILES_PATH/server6.crt key_file=$DATA_FILES_PATH/server6.key" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7177 1 \
7178 -S "skip write certificate request" \
7179 -C "skip parse certificate request" \
7180 -c "got a certificate request" \
7181 -C "skip write certificate" \
7182 -C "skip write certificate verify" \
7183 -S "skip parse certificate verify" \
7184 -s "x509_verify_cert() returned" \
7185 -S "! The certificate is not correctly signed by the trusted CA" \
Manuel Pégourié-Gonnard4192bba2024-08-05 12:44:57 +0200[diff] [blame]7186 -s "send alert level=2 message=44" \
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7187 -s "The certificate has been revoked (is on a CRL)"
Manuel Pégourié-Gonnard4192bba2024-08-05 12:44:57 +0200[diff] [blame]7188 # MBEDTLS_X509_BADCERT_REVOKED -> MBEDTLS_SSL_ALERT_MSG_CERT_REVOKED
Andres AG1a834452016-12-07 10:01:30 +0000[diff] [blame]7189
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7190# Tests for non-blocking I/O: exercise a variety of handshake flows
7191
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]7192run_test "Non-blocking I/O: basic handshake" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7193 "$P_SRV nbio=2 tickets=0 auth_mode=none" \
7194 "$P_CLI nbio=2 tickets=0" \
7195 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7196 -S "mbedtls_ssl_handshake returned" \
7197 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7198 -c "Read from server: .* bytes read"
7199
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]7200run_test "Non-blocking I/O: client auth" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7201 "$P_SRV nbio=2 tickets=0 auth_mode=required" \
7202 "$P_CLI nbio=2 tickets=0" \
7203 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7204 -S "mbedtls_ssl_handshake returned" \
7205 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7206 -c "Read from server: .* bytes read"
7207
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7208requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]7209run_test "Non-blocking I/O: ticket" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7210 "$P_SRV nbio=2 tickets=1 auth_mode=none" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]7211 "$P_CLI nbio=2 tickets=1 new_session_tickets=1" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7212 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7213 -S "mbedtls_ssl_handshake returned" \
7214 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7215 -c "Read from server: .* bytes read"
7216
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7217requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]7218run_test "Non-blocking I/O: ticket + client auth" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7219 "$P_SRV nbio=2 tickets=1 auth_mode=required" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]7220 "$P_CLI nbio=2 tickets=1 new_session_tickets=1" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7221 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7222 -S "mbedtls_ssl_handshake returned" \
7223 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7224 -c "Read from server: .* bytes read"
7225
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]7226requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7227requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7228run_test "Non-blocking I/O: TLS 1.2 + ticket + client auth + resume" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7229 "$P_SRV nbio=2 tickets=1 auth_mode=required" \
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7230 "$P_CLI force_version=tls12 nbio=2 tickets=1 reconnect=1" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7231 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7232 -S "mbedtls_ssl_handshake returned" \
7233 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7234 -c "Read from server: .* bytes read"
7235
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7236requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7237requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
7238requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7239requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7240run_test "Non-blocking I/O: TLS 1.3 + ticket + client auth + resume" \
7241 "$P_SRV nbio=2 tickets=1 auth_mode=required" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]7242 "$P_CLI nbio=2 tickets=1 new_session_tickets=1 reconnect=1" \
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7243 0 \
7244 -S "mbedtls_ssl_handshake returned" \
7245 -C "mbedtls_ssl_handshake returned" \
7246 -c "Read from server: .* bytes read"
7247
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]7248requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7249requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7250run_test "Non-blocking I/O: TLS 1.2 + ticket + resume" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7251 "$P_SRV nbio=2 tickets=1 auth_mode=none" \
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7252 "$P_CLI force_version=tls12 nbio=2 tickets=1 reconnect=1" \
7253 0 \
7254 -S "mbedtls_ssl_handshake returned" \
7255 -C "mbedtls_ssl_handshake returned" \
7256 -c "Read from server: .* bytes read"
7257
7258requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7259requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
7260requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7261requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7262run_test "Non-blocking I/O: TLS 1.3 + ticket + resume" \
7263 "$P_SRV nbio=2 tickets=1 auth_mode=none" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]7264 "$P_CLI nbio=2 tickets=1 new_session_tickets=1 reconnect=1" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7265 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7266 -S "mbedtls_ssl_handshake returned" \
7267 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7268 -c "Read from server: .* bytes read"
7269
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]7270requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]7271run_test "Non-blocking I/O: session-id resume" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7272 "$P_SRV nbio=2 tickets=0 auth_mode=none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]7273 "$P_CLI force_version=tls12 nbio=2 tickets=0 reconnect=1" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7274 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7275 -S "mbedtls_ssl_handshake returned" \
7276 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0b6609b2014-02-26 14:45:12 +0100[diff] [blame]7277 -c "Read from server: .* bytes read"
7278
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7279# Tests for event-driven I/O: exercise a variety of handshake flows
7280
7281run_test "Event-driven I/O: basic handshake" \
7282 "$P_SRV event=1 tickets=0 auth_mode=none" \
7283 "$P_CLI event=1 tickets=0" \
7284 0 \
7285 -S "mbedtls_ssl_handshake returned" \
7286 -C "mbedtls_ssl_handshake returned" \
7287 -c "Read from server: .* bytes read"
7288
7289run_test "Event-driven I/O: client auth" \
7290 "$P_SRV event=1 tickets=0 auth_mode=required" \
7291 "$P_CLI event=1 tickets=0" \
7292 0 \
7293 -S "mbedtls_ssl_handshake returned" \
7294 -C "mbedtls_ssl_handshake returned" \
7295 -c "Read from server: .* bytes read"
7296
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7297requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7298run_test "Event-driven I/O: ticket" \
7299 "$P_SRV event=1 tickets=1 auth_mode=none" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]7300 "$P_CLI event=1 tickets=1 new_session_tickets=1" \
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7301 0 \
7302 -S "mbedtls_ssl_handshake returned" \
7303 -C "mbedtls_ssl_handshake returned" \
7304 -c "Read from server: .* bytes read"
7305
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7306requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7307run_test "Event-driven I/O: ticket + client auth" \
7308 "$P_SRV event=1 tickets=1 auth_mode=required" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]7309 "$P_CLI event=1 tickets=1 new_session_tickets=1" \
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7310 0 \
7311 -S "mbedtls_ssl_handshake returned" \
7312 -C "mbedtls_ssl_handshake returned" \
7313 -c "Read from server: .* bytes read"
7314
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]7315requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7316requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7317run_test "Event-driven I/O: TLS 1.2 + ticket + client auth + resume" \
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7318 "$P_SRV event=1 tickets=1 auth_mode=required" \
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7319 "$P_CLI force_version=tls12 event=1 tickets=1 reconnect=1" \
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7320 0 \
7321 -S "mbedtls_ssl_handshake returned" \
7322 -C "mbedtls_ssl_handshake returned" \
7323 -c "Read from server: .* bytes read"
7324
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7325requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7326requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
7327requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7328requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7329run_test "Event-driven I/O: TLS 1.3 + ticket + client auth + resume" \
7330 "$P_SRV event=1 tickets=1 auth_mode=required" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]7331 "$P_CLI event=1 tickets=1 new_session_tickets=1 reconnect=1" \
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7332 0 \
7333 -S "mbedtls_ssl_handshake returned" \
7334 -C "mbedtls_ssl_handshake returned" \
7335 -c "Read from server: .* bytes read"
7336
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]7337requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7338requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7339run_test "Event-driven I/O: TLS 1.2 + ticket + resume" \
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7340 "$P_SRV event=1 tickets=1 auth_mode=none" \
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7341 "$P_CLI force_version=tls12 event=1 tickets=1 reconnect=1" \
7342 0 \
7343 -S "mbedtls_ssl_handshake returned" \
7344 -C "mbedtls_ssl_handshake returned" \
7345 -c "Read from server: .* bytes read"
7346
7347requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7348requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
7349requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7350requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Ronald Cron92dca392023-03-10 16:11:15 +0100[diff] [blame]7351run_test "Event-driven I/O: TLS 1.3 + ticket + resume" \
7352 "$P_SRV event=1 tickets=1 auth_mode=none" \
Manuel Pégourié-Gonnardaa80f532024-09-04 10:51:33 +0200[diff] [blame]7353 "$P_CLI event=1 tickets=1 new_session_tickets=1 reconnect=1" \
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7354 0 \
7355 -S "mbedtls_ssl_handshake returned" \
7356 -C "mbedtls_ssl_handshake returned" \
7357 -c "Read from server: .* bytes read"
7358
Ronald Cron5de538c2022-10-20 14:47:56 +0200[diff] [blame]7359requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7360run_test "Event-driven I/O: session-id resume" \
7361 "$P_SRV event=1 tickets=0 auth_mode=none" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]7362 "$P_CLI force_version=tls12 event=1 tickets=0 reconnect=1" \
Hanno Becker00076712017-11-15 16:39:08 +0000[diff] [blame]7363 0 \
7364 -S "mbedtls_ssl_handshake returned" \
7365 -C "mbedtls_ssl_handshake returned" \
7366 -c "Read from server: .* bytes read"
7367
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7368requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7369run_test "Event-driven I/O, DTLS: basic handshake" \
7370 "$P_SRV dtls=1 event=1 tickets=0 auth_mode=none" \
7371 "$P_CLI dtls=1 event=1 tickets=0" \
7372 0 \
7373 -c "Read from server: .* bytes read"
7374
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7375requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7376run_test "Event-driven I/O, DTLS: client auth" \
7377 "$P_SRV dtls=1 event=1 tickets=0 auth_mode=required" \
7378 "$P_CLI dtls=1 event=1 tickets=0" \
7379 0 \
7380 -c "Read from server: .* bytes read"
7381
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7382requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7383requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7384run_test "Event-driven I/O, DTLS: ticket" \
7385 "$P_SRV dtls=1 event=1 tickets=1 auth_mode=none" \
7386 "$P_CLI dtls=1 event=1 tickets=1" \
7387 0 \
7388 -c "Read from server: .* bytes read"
7389
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7390requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7391requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7392run_test "Event-driven I/O, DTLS: ticket + client auth" \
7393 "$P_SRV dtls=1 event=1 tickets=1 auth_mode=required" \
7394 "$P_CLI dtls=1 event=1 tickets=1" \
7395 0 \
7396 -c "Read from server: .* bytes read"
7397
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7398requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7399requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7400run_test "Event-driven I/O, DTLS: ticket + client auth + resume" \
7401 "$P_SRV dtls=1 event=1 tickets=1 auth_mode=required" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]7402 "$P_CLI dtls=1 event=1 tickets=1 reconnect=1 skip_close_notify=1" \
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7403 0 \
7404 -c "Read from server: .* bytes read"
7405
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7406requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]7407requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7408run_test "Event-driven I/O, DTLS: ticket + resume" \
7409 "$P_SRV dtls=1 event=1 tickets=1 auth_mode=none" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]7410 "$P_CLI dtls=1 event=1 tickets=1 reconnect=1 skip_close_notify=1" \
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7411 0 \
7412 -c "Read from server: .* bytes read"
7413
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7414requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7415run_test "Event-driven I/O, DTLS: session-id resume" \
7416 "$P_SRV dtls=1 event=1 tickets=0 auth_mode=none" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]7417 "$P_CLI dtls=1 event=1 tickets=0 reconnect=1 skip_close_notify=1" \
Hanno Becker6a33f592018-03-13 11:38:46 +0000[diff] [blame]7418 0 \
7419 -c "Read from server: .* bytes read"
Hanno Beckerbc6c1102018-03-13 11:39:40 +0000[diff] [blame]7420
7421# This test demonstrates the need for the mbedtls_ssl_check_pending function.
7422# During session resumption, the client will send its ApplicationData record
7423# within the same datagram as the Finished messages. In this situation, the
7424# server MUST NOT idle on the underlying transport after handshake completion,
7425# because the ApplicationData request has already been queued internally.
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7426requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckerbc6c1102018-03-13 11:39:40 +0000[diff] [blame]7427run_test "Event-driven I/O, DTLS: session-id resume, UDP packing" \
Hanno Becker8d832182018-03-15 10:14:19 +0000[diff] [blame]7428 -p "$P_PXY pack=50" \
Hanno Beckerbc6c1102018-03-13 11:39:40 +0000[diff] [blame]7429 "$P_SRV dtls=1 event=1 tickets=0 auth_mode=required" \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]7430 "$P_CLI dtls=1 event=1 tickets=0 reconnect=1 skip_close_notify=1" \
Hanno Beckerbc6c1102018-03-13 11:39:40 +0000[diff] [blame]7431 0 \
7432 -c "Read from server: .* bytes read"
7433
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7434# Tests for version negotiation. Some information to ease the understanding
7435# of the version negotiation test titles below:
7436# . 1.2/1.3 means that only TLS 1.2/TLS 1.3 is enabled.
7437# . 1.2+1.3 means that both TLS 1.2 and TLS 1.3 are enabled.
7438# . 1.2+(1.3)/(1.2)+1.3 means that TLS 1.2/1.3 is enabled and that
7439# TLS 1.3/1.2 may be enabled or not.
7440# . max=1.2 means that both TLS 1.2 and TLS 1.3 are enabled at build time but
7441# TLS 1.3 is disabled at runtime (maximum negotiable version is TLS 1.2).
7442# . min=1.3 means that both TLS 1.2 and TLS 1.3 are enabled at build time but
7443# TLS 1.2 is disabled at runtime (minimum negotiable version is TLS 1.3).
7444
Ronald Cronfe18d8d2024-03-06 15:19:55 +0100[diff] [blame]7445# Tests for version negotiation, MbedTLS client and server
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]7446
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7447requires_config_enabled MBEDTLS_SSL_CLI_C
7448requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7449requires_config_disabled MBEDTLS_SSL_PROTO_TLS1_3
7450requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7451run_test "Version nego m->m: cli 1.2, srv 1.2 -> 1.2" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]7452 "$P_SRV" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7453 "$P_CLI" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]7454 0 \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7455 -S "mbedtls_ssl_handshake returned" \
7456 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]7457 -s "Protocol is TLSv1.2" \
7458 -c "Protocol is TLSv1.2"
7459
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7460requires_config_enabled MBEDTLS_SSL_CLI_C
7461requires_config_enabled MBEDTLS_SSL_SRV_C
7462requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7463requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7464requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7465run_test "Version nego m->m: cli max=1.2, srv max=1.2 -> 1.2" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7466 "$P_SRV max_version=tls12" \
7467 "$P_CLI max_version=tls12" \
7468 0 \
7469 -S "mbedtls_ssl_handshake returned" \
7470 -C "mbedtls_ssl_handshake returned" \
7471 -s "Protocol is TLSv1.2" \
7472 -c "Protocol is TLSv1.2"
7473
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7474requires_config_enabled MBEDTLS_SSL_CLI_C
7475requires_config_enabled MBEDTLS_SSL_SRV_C
7476requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7477requires_config_disabled MBEDTLS_SSL_PROTO_TLS1_2
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7478run_test "Version nego m->m: cli 1.3, srv 1.3 -> 1.3" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7479 "$P_SRV" \
7480 "$P_CLI" \
7481 0 \
7482 -S "mbedtls_ssl_handshake returned" \
7483 -C "mbedtls_ssl_handshake returned" \
7484 -s "Protocol is TLSv1.3" \
7485 -c "Protocol is TLSv1.3"
7486
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7487requires_config_enabled MBEDTLS_SSL_CLI_C
7488requires_config_enabled MBEDTLS_SSL_SRV_C
7489requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7490requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7491requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7492run_test "Version nego m->m: cli min=1.3, srv min=1.3 -> 1.3" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7493 "$P_SRV min_version=tls13" \
7494 "$P_CLI min_version=tls13" \
7495 0 \
7496 -S "mbedtls_ssl_handshake returned" \
7497 -C "mbedtls_ssl_handshake returned" \
7498 -s "Protocol is TLSv1.3" \
7499 -c "Protocol is TLSv1.3"
7500
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7501requires_config_enabled MBEDTLS_SSL_CLI_C
7502requires_config_enabled MBEDTLS_SSL_SRV_C
7503requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7504requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7505requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7506run_test "Version nego m->m: cli 1.2+1.3, srv 1.2+1.3 -> 1.3" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7507 "$P_SRV" \
7508 "$P_CLI" \
7509 0 \
7510 -S "mbedtls_ssl_handshake returned" \
7511 -C "mbedtls_ssl_handshake returned" \
7512 -s "Protocol is TLSv1.3" \
7513 -c "Protocol is TLSv1.3"
7514
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7515requires_config_enabled MBEDTLS_SSL_CLI_C
7516requires_config_enabled MBEDTLS_SSL_SRV_C
7517requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7518requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7519requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7520run_test "Version nego m->m: cli 1.2+1.3, srv min=1.3 -> 1.3" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7521 "$P_SRV min_version=tls13" \
7522 "$P_CLI" \
7523 0 \
7524 -S "mbedtls_ssl_handshake returned" \
7525 -C "mbedtls_ssl_handshake returned" \
7526 -s "Protocol is TLSv1.3" \
7527 -c "Protocol is TLSv1.3"
7528
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7529requires_config_enabled MBEDTLS_SSL_CLI_C
7530requires_config_enabled MBEDTLS_SSL_SRV_C
7531requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7532requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7533requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7534run_test "Version nego m->m: cli 1.2+1.3, srv max=1.2 -> 1.2" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7535 "$P_SRV max_version=tls12" \
7536 "$P_CLI" \
7537 0 \
7538 -S "mbedtls_ssl_handshake returned" \
7539 -C "mbedtls_ssl_handshake returned" \
7540 -s "Protocol is TLSv1.2" \
7541 -c "Protocol is TLSv1.2"
7542
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7543requires_config_enabled MBEDTLS_SSL_CLI_C
7544requires_config_enabled MBEDTLS_SSL_SRV_C
7545requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7546requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7547requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7548run_test "Version nego m->m: cli max=1.2, srv 1.2+1.3 -> 1.2" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]7549 "$P_SRV" \
Ronald Crondcfd00c2024-03-06 15:58:50 +0100[diff] [blame]7550 "$P_CLI max_version=tls12" \
Manuel Pégourié-Gonnarda3d808e2014-02-26 16:33:03 +0100[diff] [blame]7551 0 \
7552 -S "mbedtls_ssl_handshake returned" \
7553 -C "mbedtls_ssl_handshake returned" \
7554 -s "Protocol is TLSv1.2" \
7555 -c "Protocol is TLSv1.2"
7556
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7557requires_config_enabled MBEDTLS_SSL_CLI_C
7558requires_config_enabled MBEDTLS_SSL_SRV_C
7559requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7560requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7561requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7562run_test "Version nego m->m: cli min=1.3, srv 1.2+1.3 -> 1.3" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7563 "$P_SRV" \
7564 "$P_CLI min_version=tls13" \
7565 0 \
7566 -S "mbedtls_ssl_handshake returned" \
7567 -C "mbedtls_ssl_handshake returned" \
7568 -s "Protocol is TLSv1.3" \
7569 -c "Protocol is TLSv1.3"
7570
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7571requires_config_enabled MBEDTLS_SSL_CLI_C
7572requires_config_enabled MBEDTLS_SSL_SRV_C
7573requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7574requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7575run_test "Not supported version m->m: cli max=1.2, srv min=1.3" \
Ronald Crondcfd00c2024-03-06 15:58:50 +0100[diff] [blame]7576 "$P_SRV min_version=tls13" \
7577 "$P_CLI max_version=tls12" \
7578 1 \
7579 -s "Handshake protocol not within min/max boundaries" \
7580 -S "Protocol is TLSv1.2" \
7581 -C "Protocol is TLSv1.2" \
7582 -S "Protocol is TLSv1.3" \
7583 -C "Protocol is TLSv1.3"
Ronald Cronfe18d8d2024-03-06 15:19:55 +0100[diff] [blame]7584
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7585requires_config_enabled MBEDTLS_SSL_CLI_C
7586requires_config_enabled MBEDTLS_SSL_SRV_C
7587requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7588requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7589run_test "Not supported version m->m: cli min=1.3, srv max=1.2" \
Ronald Cron114c5f02024-03-06 15:24:41 +0100[diff] [blame]7590 "$P_SRV max_version=tls12" \
7591 "$P_CLI min_version=tls13" \
7592 1 \
7593 -s "The handshake negotiation failed" \
7594 -S "Protocol is TLSv1.2" \
7595 -C "Protocol is TLSv1.2" \
7596 -S "Protocol is TLSv1.3" \
7597 -C "Protocol is TLSv1.3"
7598
Ronald Croncd1370e2024-03-12 16:07:48 +0100[diff] [blame]7599# Tests of version negotiation on server side against GnuTLS client
7600
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7601requires_config_enabled MBEDTLS_SSL_SRV_C
7602requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7603requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7604run_test "Server version nego G->m: cli 1.2, srv 1.2+(1.3) -> 1.2" \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7605 "$P_SRV" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7606 "$G_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2" \
Ronald Croncd1370e2024-03-12 16:07:48 +0100[diff] [blame]7607 0 \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7608 -S "mbedtls_ssl_handshake returned" \
7609 -s "Protocol is TLSv1.2"
Ronald Croncd1370e2024-03-12 16:07:48 +0100[diff] [blame]7610
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7611requires_config_enabled MBEDTLS_SSL_SRV_C
7612requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7613requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7614requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7615run_test "Server version nego G->m: cli 1.2, srv max=1.2 -> 1.2" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7616 "$P_SRV max_version=tls12" \
7617 "$G_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2" \
7618 0 \
7619 -S "mbedtls_ssl_handshake returned" \
7620 -s "Protocol is TLSv1.2"
7621
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7622requires_config_enabled MBEDTLS_SSL_SRV_C
7623requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7624requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7625run_test "Server version nego G->m: cli 1.3, srv (1.2)+1.3 -> 1.3" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7626 "$P_SRV" \
7627 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3" \
7628 0 \
7629 -S "mbedtls_ssl_handshake returned" \
7630 -s "Protocol is TLSv1.3"
7631
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7632requires_config_enabled MBEDTLS_SSL_SRV_C
7633requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7634requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7635requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7636run_test "Server version nego G->m: cli 1.3, srv min=1.3 -> 1.3" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7637 "$P_SRV min_version=tls13" \
7638 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3" \
7639 0 \
7640 -S "mbedtls_ssl_handshake returned" \
7641 -s "Protocol is TLSv1.3"
7642
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7643requires_config_enabled MBEDTLS_SSL_SRV_C
7644requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7645requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7646run_test "Server version nego G->m: cli 1.2+1.3, srv (1.2)+1.3 -> 1.3" \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7647 "$P_SRV" \
7648 "$G_NEXT_CLI localhost --priority=NORMAL" \
Ronald Croncd1370e2024-03-12 16:07:48 +0100[diff] [blame]7649 0 \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7650 -S "mbedtls_ssl_handshake returned" \
7651 -s "Protocol is TLSv1.3"
Ronald Croncd1370e2024-03-12 16:07:48 +0100[diff] [blame]7652
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7653requires_gnutls_next_disable_tls13_compat
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7654requires_config_enabled MBEDTLS_SSL_SRV_C
7655requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7656requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7657run_test "Server version nego G->m (no compat): cli 1.2+1.3, srv (1.2)+1.3 -> 1.3" \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7658 "$P_SRV" \
7659 "$G_NEXT_CLI localhost --priority=NORMAL:%DISABLE_TLS13_COMPAT_MODE" \
Ronald Croncd1370e2024-03-12 16:07:48 +0100[diff] [blame]7660 0 \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7661 -S "mbedtls_ssl_handshake returned" \
7662 -s "Protocol is TLSv1.3"
Ronald Croncd1370e2024-03-12 16:07:48 +0100[diff] [blame]7663
7664# GnuTLS can be setup to send a ClientHello containing a supported versions
7665# extension proposing TLS 1.2 (preferred) and then TLS 1.3. In that case,
7666# a TLS 1.3 and TLS 1.2 capable server is supposed to negotiate TLS 1.2 and
7667# to indicate in the ServerHello that it downgrades from TLS 1.3. The GnuTLS
7668# client then detects the downgrade indication and aborts the handshake even
7669# if TLS 1.2 was its preferred version. Keeping the test even if the
7670# handshake fails eventually as it exercices parts of the Mbed TLS
7671# implementation that are otherwise not exercised.
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7672requires_config_enabled MBEDTLS_SSL_SRV_C
7673requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7674requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7675run_test "Server version nego G->m: cli 1.2+1.3 (1.2 preferred!), srv 1.2+1.3 -> 1.2" \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7676 "$P_SRV" \
Ronald Croncd1370e2024-03-12 16:07:48 +0100[diff] [blame]7677 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:+VERS-TLS1.3" \
7678 1 \
7679 -c "Detected downgrade to TLS 1.2 from TLS 1.3"
7680
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7681requires_config_enabled MBEDTLS_SSL_SRV_C
7682requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7683requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7684requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7685run_test "Server version nego G->m: cli 1.2+1.3, srv min=1.3 -> 1.3" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7686 "$P_SRV min_version=tls13" \
7687 "$G_NEXT_CLI localhost --priority=NORMAL" \
7688 0 \
7689 -S "mbedtls_ssl_handshake returned" \
7690 -s "Protocol is TLSv1.3"
7691
7692requires_config_enabled MBEDTLS_SSL_SRV_C
7693requires_config_disabled MBEDTLS_SSL_PROTO_TLS1_3
7694requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7695run_test "Server version nego G->m: cli 1.2+1.3, srv 1.2 -> 1.2" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7696 "$P_SRV" \
7697 "$G_NEXT_CLI localhost --priority=NORMAL" \
7698 0 \
7699 -S "mbedtls_ssl_handshake returned" \
7700 -s "Protocol is TLSv1.2"
7701
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7702requires_config_enabled MBEDTLS_SSL_SRV_C
7703requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7704requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7705requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7706run_test "Server version nego G->m: cli 1.2+1.3, max=1.2 -> 1.2" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7707 "$P_SRV max_version=tls12" \
7708 "$G_NEXT_CLI localhost --priority=NORMAL" \
7709 0 \
7710 -S "mbedtls_ssl_handshake returned" \
7711 -s "Protocol is TLSv1.2"
7712
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7713requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7714run_test "Not supported version G->m: cli 1.0, (1.2)+(1.3)" \
TRodziewicz2abf03c2021-06-25 14:40:09 +0200[diff] [blame]7715 "$P_SRV" \
7716 "$G_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.0" \
7717 1 \
7718 -s "Handshake protocol not within min/max boundaries" \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7719 -S "Protocol is TLSv1.0"
TRodziewicz2abf03c2021-06-25 14:40:09 +0200[diff] [blame]7720
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7721requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7722run_test "Not supported version G->m: cli 1.1, (1.2)+(1.3)" \
TRodziewicz2abf03c2021-06-25 14:40:09 +0200[diff] [blame]7723 "$P_SRV" \
7724 "$G_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.1" \
7725 1 \
7726 -s "Handshake protocol not within min/max boundaries" \
Ronald Cron98bdcc42024-03-06 15:00:42 +0100[diff] [blame]7727 -S "Protocol is TLSv1.1"
TRodziewicz2abf03c2021-06-25 14:40:09 +0200[diff] [blame]7728
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7729requires_config_enabled MBEDTLS_SSL_SRV_C
7730requires_config_disabled MBEDTLS_SSL_PROTO_TLS1_2
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7731run_test "Not supported version G->m: cli 1.2, srv 1.3" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7732 "$P_SRV" \
7733 "$G_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2" \
7734 1 \
7735 -s "Handshake protocol not within min/max boundaries" \
7736 -S "Protocol is TLSv1.2"
7737
7738requires_config_enabled MBEDTLS_SSL_SRV_C
7739requires_config_disabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7740run_test "Not supported version G->m: cli 1.3, srv 1.2" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7741 "$P_SRV" \
7742 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3" \
7743 1 \
7744 -S "Handshake protocol not within min/max boundaries" \
7745 -s "The handshake negotiation failed" \
7746 -S "Protocol is TLSv1.3"
7747
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7748requires_config_enabled MBEDTLS_SSL_SRV_C
7749requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7750requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7751run_test "Not supported version G->m: cli 1.2, srv min=1.3" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7752 "$P_SRV min_version=tls13" \
7753 "$G_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2" \
7754 1 \
7755 -s "Handshake protocol not within min/max boundaries" \
7756 -S "Protocol is TLSv1.2"
7757
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7758requires_config_enabled MBEDTLS_SSL_SRV_C
7759requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7760requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7761run_test "Not supported version G->m: cli 1.3, srv max=1.2" \
Ronald Crondfad4932024-03-06 15:05:14 +0100[diff] [blame]7762 "$P_SRV max_version=tls12" \
7763 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3" \
7764 1 \
7765 -S "Handshake protocol not within min/max boundaries" \
7766 -s "The handshake negotiation failed" \
7767 -S "Protocol is TLSv1.3"
7768
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7769# Tests of version negotiation on server side against OpenSSL client
7770
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7771requires_config_enabled MBEDTLS_SSL_SRV_C
7772requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7773requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7774run_test "Server version nego O->m: cli 1.2, srv 1.2+(1.3) -> 1.2" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7775 "$P_SRV" \
7776 "$O_NEXT_CLI -tls1_2" \
7777 0 \
7778 -S "mbedtls_ssl_handshake returned" \
7779 -s "Protocol is TLSv1.2"
7780
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7781requires_config_enabled MBEDTLS_SSL_SRV_C
7782requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7783requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7784requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7785run_test "Server version nego O->m: cli 1.2, srv max=1.2 -> 1.2" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7786 "$P_SRV max_version=tls12" \
7787 "$O_NEXT_CLI -tls1_2" \
7788 0 \
7789 -S "mbedtls_ssl_handshake returned" \
7790 -s "Protocol is TLSv1.2"
7791
7792requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7793requires_config_enabled MBEDTLS_SSL_SRV_C
7794requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7795requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7796run_test "Server version nego O->m: cli 1.3, srv (1.2)+1.3 -> 1.3" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7797 "$P_SRV" \
7798 "$O_NEXT_CLI -tls1_3" \
7799 0 \
7800 -S "mbedtls_ssl_handshake returned" \
7801 -s "Protocol is TLSv1.3"
7802
7803requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7804requires_config_enabled MBEDTLS_SSL_SRV_C
7805requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7806requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7807requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7808run_test "Server version nego O->m: cli 1.3, srv min=1.3 -> 1.3" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7809 "$P_SRV min_version=tls13" \
7810 "$O_NEXT_CLI -tls1_3" \
7811 0 \
7812 -S "mbedtls_ssl_handshake returned" \
7813 -s "Protocol is TLSv1.3"
7814
7815requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7816requires_config_enabled MBEDTLS_SSL_SRV_C
7817requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7818requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7819run_test "Server version nego O->m: cli 1.2+1.3, srv (1.2)+1.3 -> 1.3" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7820 "$P_SRV" \
7821 "$O_NEXT_CLI" \
7822 0 \
7823 -S "mbedtls_ssl_handshake returned" \
7824 -s "Protocol is TLSv1.3"
7825
7826requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7827requires_config_enabled MBEDTLS_SSL_SRV_C
7828requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7829requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7830run_test "Server version nego O->m (no compat): cli 1.2+1.3, srv (1.2)+1.3 -> 1.3" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7831 "$P_SRV" \
7832 "$O_NEXT_CLI -no_middlebox" \
7833 0 \
7834 -S "mbedtls_ssl_handshake returned" \
7835 -s "Protocol is TLSv1.3"
7836
7837requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7838requires_config_enabled MBEDTLS_SSL_SRV_C
7839requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7840requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7841requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7842run_test "Server version nego O->m: cli 1.2+1.3, srv min=1.3 -> 1.3" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7843 "$P_SRV min_version=tls13" \
7844 "$O_NEXT_CLI" \
7845 0 \
7846 -S "mbedtls_ssl_handshake returned" \
7847 -s "Protocol is TLSv1.3"
7848
7849requires_config_enabled MBEDTLS_SSL_SRV_C
7850requires_config_disabled MBEDTLS_SSL_PROTO_TLS1_3
7851requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7852run_test "Server version nego O->m: cli 1.2+1.3, srv 1.2 -> 1.2" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7853 "$P_SRV" \
7854 "$O_NEXT_CLI" \
7855 0 \
7856 -S "mbedtls_ssl_handshake returned" \
7857 -s "Protocol is TLSv1.2"
7858
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7859requires_config_enabled MBEDTLS_SSL_SRV_C
7860requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7861requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7862requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7863run_test "Server version nego O->m: cli 1.2+1.3, srv max=1.2 -> 1.2" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7864 "$P_SRV max_version=tls12" \
7865 "$O_NEXT_CLI" \
7866 0 \
7867 -S "mbedtls_ssl_handshake returned" \
7868 -s "Protocol is TLSv1.2"
7869
7870requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7871run_test "Not supported version O->m: cli 1.0, srv (1.2)+(1.3)" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7872 "$P_SRV" \
7873 "$O_CLI -tls1" \
7874 1 \
7875 -s "Handshake protocol not within min/max boundaries" \
7876 -S "Protocol is TLSv1.0"
7877
7878requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7879run_test "Not supported version O->m: cli 1.1, srv (1.2)+(1.3)" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7880 "$P_SRV" \
7881 "$O_CLI -tls1_1" \
7882 1 \
7883 -s "Handshake protocol not within min/max boundaries" \
7884 -S "Protocol is TLSv1.1"
7885
7886requires_config_enabled MBEDTLS_SSL_SRV_C
7887requires_config_disabled MBEDTLS_SSL_PROTO_TLS1_2
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7888run_test "Not supported version O->m: cli 1.2, srv 1.3" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7889 "$P_SRV" \
7890 "$O_NEXT_CLI -tls1_2" \
7891 1 \
7892 -s "Handshake protocol not within min/max boundaries" \
7893 -S "Protocol is TLSv1.2"
7894
7895requires_config_enabled MBEDTLS_SSL_SRV_C
7896requires_config_disabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7897run_test "Not supported version O->m: cli 1.3, srv 1.2" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7898 "$P_SRV" \
7899 "$O_NEXT_CLI -tls1_3" \
7900 1 \
7901 -S "Handshake protocol not within min/max boundaries" \
7902 -s "The handshake negotiation failed" \
7903 -S "Protocol is TLSv1.3"
7904
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7905requires_config_enabled MBEDTLS_SSL_SRV_C
7906requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7907requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7908run_test "Not supported version O->m: cli 1.2, srv min=1.3" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7909 "$P_SRV min_version=tls13" \
7910 "$O_NEXT_CLI -tls1_2" \
7911 1 \
7912 -s "Handshake protocol not within min/max boundaries" \
7913 -S "Protocol is TLSv1.2"
7914
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]7915requires_config_enabled MBEDTLS_SSL_SRV_C
7916requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
7917requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7918run_test "Not supported version O->m: cli 1.3, srv max=1.2" \
Ronald Cron10797e32024-03-07 08:27:24 +0100[diff] [blame]7919 "$P_SRV max_version=tls12" \
7920 "$O_NEXT_CLI -tls1_3" \
7921 1 \
7922 -S "Handshake protocol not within min/max boundaries" \
7923 -s "The handshake negotiation failed" \
7924 -S "Protocol is TLSv1.3"
7925
Ronald Crona1e7b6a2024-03-06 15:13:49 +0100[diff] [blame]7926# Tests of version negotiation on client side against GnuTLS and OpenSSL server
TRodziewicz2abf03c2021-06-25 14:40:09 +0200[diff] [blame]7927
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7928requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7929run_test "Not supported version: srv max TLS 1.0" \
TRodziewicz2abf03c2021-06-25 14:40:09 +0200[diff] [blame]7930 "$G_SRV --priority=NORMAL:-VERS-TLS-ALL:+VERS-TLS1.0" \
7931 "$P_CLI" \
7932 1 \
7933 -s "Error in protocol version" \
7934 -c "Handshake protocol not within min/max boundaries" \
7935 -S "Version: TLS1.0" \
7936 -C "Protocol is TLSv1.0"
7937
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]7938requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7939run_test "Not supported version: srv max TLS 1.1" \
TRodziewicz2abf03c2021-06-25 14:40:09 +0200[diff] [blame]7940 "$G_SRV --priority=NORMAL:-VERS-TLS-ALL:+VERS-TLS1.1" \
7941 "$P_CLI" \
7942 1 \
7943 -s "Error in protocol version" \
7944 -c "Handshake protocol not within min/max boundaries" \
7945 -S "Version: TLS1.1" \
7946 -C "Protocol is TLSv1.1"
7947
Ronald Crona1e7b6a2024-03-06 15:13:49 +0100[diff] [blame]7948requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7949requires_config_enabled MBEDTLS_DEBUG_C
7950requires_config_enabled MBEDTLS_SSL_CLI_C
7951skip_handshake_stage_check
7952requires_gnutls_tls1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7953run_test "TLS 1.3: Not supported version:gnutls: srv max TLS 1.0" \
Ronald Crona1e7b6a2024-03-06 15:13:49 +0100[diff] [blame]7954 "$G_NEXT_SRV --priority=NORMAL:-VERS-TLS-ALL:+VERS-TLS1.0 -d 4" \
7955 "$P_CLI debug_level=4" \
7956 1 \
7957 -s "Client's version: 3.3" \
7958 -S "Version: TLS1.0" \
7959 -C "Protocol is TLSv1.0"
7960
7961requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7962requires_config_enabled MBEDTLS_DEBUG_C
7963requires_config_enabled MBEDTLS_SSL_CLI_C
7964skip_handshake_stage_check
7965requires_gnutls_tls1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7966run_test "TLS 1.3: Not supported version:gnutls: srv max TLS 1.1" \
Ronald Crona1e7b6a2024-03-06 15:13:49 +0100[diff] [blame]7967 "$G_NEXT_SRV --priority=NORMAL:-VERS-TLS-ALL:+VERS-TLS1.1 -d 4" \
7968 "$P_CLI debug_level=4" \
7969 1 \
7970 -s "Client's version: 3.3" \
7971 -S "Version: TLS1.1" \
7972 -C "Protocol is TLSv1.1"
7973
7974requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7975requires_config_enabled MBEDTLS_DEBUG_C
7976requires_config_enabled MBEDTLS_SSL_CLI_C
7977skip_handshake_stage_check
7978requires_gnutls_tls1_3
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7979run_test "TLS 1.3: Not supported version:gnutls: srv max TLS 1.2" \
Ronald Crona1e7b6a2024-03-06 15:13:49 +0100[diff] [blame]7980 "$G_NEXT_SRV --priority=NORMAL:-VERS-TLS-ALL:+VERS-TLS1.2 -d 4" \
7981 "$P_CLI force_version=tls13 debug_level=4" \
7982 1 \
7983 -s "Client's version: 3.3" \
7984 -c "is a fatal alert message (msg 40)" \
7985 -S "Version: TLS1.2" \
7986 -C "Protocol is TLSv1.2"
7987
7988requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
7989requires_config_enabled MBEDTLS_DEBUG_C
7990requires_config_enabled MBEDTLS_SSL_CLI_C
7991skip_handshake_stage_check
7992requires_openssl_next
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]7993run_test "TLS 1.3: Not supported version:openssl: srv max TLS 1.0" \
Ronald Crona1e7b6a2024-03-06 15:13:49 +0100[diff] [blame]7994 "$O_NEXT_SRV -msg -tls1" \
7995 "$P_CLI debug_level=4" \
7996 1 \
7997 -s "fatal protocol_version" \
7998 -c "is a fatal alert message (msg 70)" \
7999 -S "Version: TLS1.0" \
8000 -C "Protocol : TLSv1.0"
8001
8002requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
8003requires_config_enabled MBEDTLS_DEBUG_C
8004requires_config_enabled MBEDTLS_SSL_CLI_C
8005skip_handshake_stage_check
8006requires_openssl_next
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]8007run_test "TLS 1.3: Not supported version:openssl: srv max TLS 1.1" \
Ronald Crona1e7b6a2024-03-06 15:13:49 +0100[diff] [blame]8008 "$O_NEXT_SRV -msg -tls1_1" \
8009 "$P_CLI debug_level=4" \
8010 1 \
8011 -s "fatal protocol_version" \
8012 -c "is a fatal alert message (msg 70)" \
8013 -S "Version: TLS1.1" \
8014 -C "Protocol : TLSv1.1"
8015
8016requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
8017requires_config_enabled MBEDTLS_DEBUG_C
8018requires_config_enabled MBEDTLS_SSL_CLI_C
8019skip_handshake_stage_check
8020requires_openssl_next
Ronald Cron35884a42024-03-15 15:43:14 +0100[diff] [blame]8021run_test "TLS 1.3: Not supported version:openssl: srv max TLS 1.2" \
Ronald Crona1e7b6a2024-03-06 15:13:49 +0100[diff] [blame]8022 "$O_NEXT_SRV -msg -tls1_2" \
8023 "$P_CLI force_version=tls13 debug_level=4" \
8024 1 \
8025 -s "fatal protocol_version" \
8026 -c "is a fatal alert message (msg 70)" \
8027 -S "Version: TLS1.2" \
8028 -C "Protocol : TLSv1.2"
8029
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8030# Tests for ALPN extension
8031
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8032run_test "ALPN: none" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8033 "$P_SRV debug_level=3" \
8034 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8035 0 \
8036 -C "client hello, adding alpn extension" \
8037 -S "found alpn extension" \
8038 -C "got an alert message, type: \\[2:120]" \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]8039 -S "server side, adding alpn extension" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8040 -C "found alpn extension " \
8041 -C "Application Layer Protocol is" \
8042 -S "Application Layer Protocol is"
8043
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8044run_test "ALPN: client only" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8045 "$P_SRV debug_level=3" \
8046 "$P_CLI debug_level=3 alpn=abc,1234" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8047 0 \
8048 -c "client hello, adding alpn extension" \
8049 -s "found alpn extension" \
8050 -C "got an alert message, type: \\[2:120]" \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]8051 -S "server side, adding alpn extension" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8052 -C "found alpn extension " \
8053 -c "Application Layer Protocol is (none)" \
8054 -S "Application Layer Protocol is"
8055
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8056run_test "ALPN: server only" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8057 "$P_SRV debug_level=3 alpn=abc,1234" \
8058 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8059 0 \
8060 -C "client hello, adding alpn extension" \
8061 -S "found alpn extension" \
8062 -C "got an alert message, type: \\[2:120]" \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]8063 -S "server side, adding alpn extension" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8064 -C "found alpn extension " \
8065 -C "Application Layer Protocol is" \
8066 -s "Application Layer Protocol is (none)"
8067
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8068run_test "ALPN: both, common cli1-srv1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8069 "$P_SRV debug_level=3 alpn=abc,1234" \
8070 "$P_CLI debug_level=3 alpn=abc,1234" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8071 0 \
8072 -c "client hello, adding alpn extension" \
8073 -s "found alpn extension" \
8074 -C "got an alert message, type: \\[2:120]" \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]8075 -s "server side, adding alpn extension" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8076 -c "found alpn extension" \
8077 -c "Application Layer Protocol is abc" \
8078 -s "Application Layer Protocol is abc"
8079
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8080run_test "ALPN: both, common cli2-srv1" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8081 "$P_SRV debug_level=3 alpn=abc,1234" \
8082 "$P_CLI debug_level=3 alpn=1234,abc" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8083 0 \
8084 -c "client hello, adding alpn extension" \
8085 -s "found alpn extension" \
8086 -C "got an alert message, type: \\[2:120]" \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]8087 -s "server side, adding alpn extension" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8088 -c "found alpn extension" \
8089 -c "Application Layer Protocol is abc" \
8090 -s "Application Layer Protocol is abc"
8091
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8092run_test "ALPN: both, common cli1-srv2" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8093 "$P_SRV debug_level=3 alpn=abc,1234" \
8094 "$P_CLI debug_level=3 alpn=1234,abcde" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8095 0 \
8096 -c "client hello, adding alpn extension" \
8097 -s "found alpn extension" \
8098 -C "got an alert message, type: \\[2:120]" \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]8099 -s "server side, adding alpn extension" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8100 -c "found alpn extension" \
8101 -c "Application Layer Protocol is 1234" \
8102 -s "Application Layer Protocol is 1234"
8103
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8104run_test "ALPN: both, no common" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8105 "$P_SRV debug_level=3 alpn=abc,123" \
8106 "$P_CLI debug_level=3 alpn=1234,abcde" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8107 1 \
8108 -c "client hello, adding alpn extension" \
8109 -s "found alpn extension" \
8110 -c "got an alert message, type: \\[2:120]" \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]8111 -S "server side, adding alpn extension" \
Manuel Pégourié-Gonnardf6521de2014-04-07 12:42:04 +0200[diff] [blame]8112 -C "found alpn extension" \
8113 -C "Application Layer Protocol is 1234" \
8114 -S "Application Layer Protocol is 1234"
8115
Manuel Pégourié-Gonnard83d8c732014-04-07 13:24:21 +0200[diff] [blame]8116
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8117# Tests for keyUsage in leaf certificates, part 1:
8118# server-side certificate/suite selection
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8119#
8120# This is only about 1.2 (for 1.3, all key exchanges use signatures).
8121# In 4.0 this will probably go away as all TLS 1.2 key exchanges will use
8122# signatures too, following the removal of RSA #8170 and static ECDH #9201.
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8123
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8124run_test "keyUsage srv 1.2: RSA, digitalSignature -> (EC)DHE-RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8125 "$P_SRV force_version=tls12 key_file=$DATA_FILES_PATH/server2.key \
8126 crt_file=$DATA_FILES_PATH/server2.ku-ds.crt" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8127 "$P_CLI" \
8128 0 \
Manuel Pégourié-Gonnard17cde5f2014-05-22 14:42:39 +0200[diff] [blame]8129 -c "Ciphersuite is TLS-[EC]*DHE-RSA-WITH-"
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8130
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8131run_test "keyUsage srv 1.2: RSA, keyEncipherment -> RSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8132 "$P_SRV force_version=tls12 key_file=$DATA_FILES_PATH/server2.key \
8133 crt_file=$DATA_FILES_PATH/server2.ku-ke.crt" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8134 "$P_CLI" \
8135 0 \
8136 -c "Ciphersuite is TLS-RSA-WITH-"
8137
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8138run_test "keyUsage srv 1.2: RSA, keyAgreement -> fail" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8139 "$P_SRV force_version=tls12 key_file=$DATA_FILES_PATH/server2.key \
8140 crt_file=$DATA_FILES_PATH/server2.ku-ka.crt" \
Manuel Pégourié-Gonnardf2629b92014-08-30 14:20:14 +0200[diff] [blame]8141 "$P_CLI" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8142 1 \
8143 -C "Ciphersuite is "
8144
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]8145requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8146run_test "keyUsage srv 1.2: ECC, digitalSignature -> ECDHE-ECDSA" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8147 "$P_SRV force_version=tls12 key_file=$DATA_FILES_PATH/server5.key \
8148 crt_file=$DATA_FILES_PATH/server5.ku-ds.crt" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8149 "$P_CLI" \
8150 0 \
8151 -c "Ciphersuite is TLS-ECDHE-ECDSA-WITH-"
8152
8153
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8154run_test "keyUsage srv 1.2: ECC, keyAgreement -> ECDH-" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8155 "$P_SRV force_version=tls12 key_file=$DATA_FILES_PATH/server5.key \
8156 crt_file=$DATA_FILES_PATH/server5.ku-ka.crt" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8157 "$P_CLI" \
8158 0 \
8159 -c "Ciphersuite is TLS-ECDH-"
8160
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8161run_test "keyUsage srv 1.2: ECC, keyEncipherment -> fail" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8162 "$P_SRV force_version=tls12 key_file=$DATA_FILES_PATH/server5.key \
8163 crt_file=$DATA_FILES_PATH/server5.ku-ke.crt" \
Manuel Pégourié-Gonnardf2629b92014-08-30 14:20:14 +0200[diff] [blame]8164 "$P_CLI" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8165 1 \
8166 -C "Ciphersuite is "
8167
8168# Tests for keyUsage in leaf certificates, part 2:
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8169# client-side checking of server cert
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8170#
8171# TLS 1.3 uses only signature, but for 1.2 it depends on the key exchange.
8172# In 4.0 this will probably change as all TLS 1.2 key exchanges will use
8173# signatures too, following the removal of RSA #8170 and static ECDH #9201.
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8174
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8175run_test "keyUsage cli 1.2: DigitalSignature+KeyEncipherment, RSA: OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8176 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server2.key \
8177 -cert $DATA_FILES_PATH/server2.ku-ds_ke.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8178 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8179 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
8180 0 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8181 -C "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8182 -C "Processing of the Certificate handshake message failed" \
8183 -c "Ciphersuite is TLS-"
8184
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8185run_test "keyUsage cli 1.2: DigitalSignature+KeyEncipherment, DHE-RSA: OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8186 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server2.key \
8187 -cert $DATA_FILES_PATH/server2.ku-ds_ke.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8188 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8189 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
8190 0 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8191 -C "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8192 -C "Processing of the Certificate handshake message failed" \
8193 -c "Ciphersuite is TLS-"
8194
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8195run_test "keyUsage cli 1.2: KeyEncipherment, RSA: OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8196 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server2.key \
8197 -cert $DATA_FILES_PATH/server2.ku-ke.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8198 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8199 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
8200 0 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8201 -C "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8202 -C "Processing of the Certificate handshake message failed" \
8203 -c "Ciphersuite is TLS-"
8204
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8205run_test "keyUsage cli 1.2: KeyEncipherment, DHE-RSA: fail (hard)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8206 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server2.key \
8207 -cert $DATA_FILES_PATH/server2.ku-ke.crt" \
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8208 "$P_CLI debug_level=3 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8209 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
8210 1 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8211 -c "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8212 -c "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8213 -C "Ciphersuite is TLS-" \
8214 -c "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8215 -c "! Usage does not match the keyUsage extension"
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8216 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8217
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8218run_test "keyUsage cli 1.2: KeyEncipherment, DHE-RSA: fail (soft)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8219 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server2.key \
8220 -cert $DATA_FILES_PATH/server2.ku-ke.crt" \
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8221 "$P_CLI debug_level=3 auth_mode=optional \
Manuel Pégourié-Gonnarde6efa6f2015-04-20 11:01:48 +0100[diff] [blame]8222 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
8223 0 \
8224 -c "bad certificate (usage extensions)" \
8225 -C "Processing of the Certificate handshake message failed" \
8226 -c "Ciphersuite is TLS-" \
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8227 -C "send alert level=2 message=43" \
Manuel Pégourié-Gonnarde6efa6f2015-04-20 11:01:48 +0100[diff] [blame]8228 -c "! Usage does not match the keyUsage extension"
8229
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8230run_test "keyUsage cli 1.2: DigitalSignature, DHE-RSA: OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8231 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server2.key \
8232 -cert $DATA_FILES_PATH/server2.ku-ds.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8233 "$P_CLI debug_level=1 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8234 force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA" \
8235 0 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8236 -C "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8237 -C "Processing of the Certificate handshake message failed" \
8238 -c "Ciphersuite is TLS-"
8239
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8240run_test "keyUsage cli 1.2: DigitalSignature, RSA: fail (hard)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8241 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server2.key \
8242 -cert $DATA_FILES_PATH/server2.ku-ds.crt" \
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8243 "$P_CLI debug_level=3 \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8244 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
8245 1 \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8246 -c "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8247 -c "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8248 -C "Ciphersuite is TLS-" \
8249 -c "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8250 -c "! Usage does not match the keyUsage extension"
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8251 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Manuel Pégourié-Gonnard7f2a07d2014-04-09 09:50:57 +0200[diff] [blame]8252
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8253run_test "keyUsage cli 1.2: DigitalSignature, RSA: fail (soft)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8254 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server2.key \
8255 -cert $DATA_FILES_PATH/server2.ku-ds.crt" \
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8256 "$P_CLI debug_level=3 auth_mode=optional \
Manuel Pégourié-Gonnarde6efa6f2015-04-20 11:01:48 +0100[diff] [blame]8257 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
8258 0 \
8259 -c "bad certificate (usage extensions)" \
8260 -C "Processing of the Certificate handshake message failed" \
8261 -c "Ciphersuite is TLS-" \
Manuel Pégourié-Gonnardee1715c2024-08-05 12:49:57 +0200[diff] [blame]8262 -C "send alert level=2 message=43" \
Manuel Pégourié-Gonnarde6efa6f2015-04-20 11:01:48 +0100[diff] [blame]8263 -c "! Usage does not match the keyUsage extension"
8264
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8265requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8266requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8267run_test "keyUsage cli 1.3: DigitalSignature, RSA: OK" \
8268 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server2.key \
8269 -cert $DATA_FILES_PATH/server2-sha256.ku-ds.crt" \
8270 "$P_CLI debug_level=3" \
8271 0 \
8272 -C "bad certificate (usage extensions)" \
8273 -C "Processing of the Certificate handshake message failed" \
8274 -c "Ciphersuite is"
8275
8276requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8277requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8278run_test "keyUsage cli 1.3: DigitalSignature+KeyEncipherment, RSA: OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8279 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server2.key \
8280 -cert $DATA_FILES_PATH/server2-sha256.ku-ds_ke.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8281 "$P_CLI debug_level=3" \
8282 0 \
8283 -C "bad certificate (usage extensions)" \
8284 -C "Processing of the Certificate handshake message failed" \
8285 -c "Ciphersuite is"
8286
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8287requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8288requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8289run_test "keyUsage cli 1.3: KeyEncipherment, RSA: fail (hard)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8290 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server2.key \
8291 -cert $DATA_FILES_PATH/server2-sha256.ku-ke.crt" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8292 "$P_CLI debug_level=3" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8293 1 \
8294 -c "bad certificate (usage extensions)" \
8295 -c "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8296 -C "Ciphersuite is" \
8297 -c "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8298 -c "! Usage does not match the keyUsage extension"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8299 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8300
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8301requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8302requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8303run_test "keyUsage cli 1.3: KeyAgreement, RSA: fail (hard)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8304 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server2.key \
8305 -cert $DATA_FILES_PATH/server2-sha256.ku-ka.crt" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8306 "$P_CLI debug_level=3" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8307 1 \
8308 -c "bad certificate (usage extensions)" \
8309 -c "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8310 -C "Ciphersuite is" \
8311 -c "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8312 -c "! Usage does not match the keyUsage extension"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8313 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8314
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8315requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8316requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8317run_test "keyUsage cli 1.3: DigitalSignature, ECDSA: OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8318 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server5.key \
8319 -cert $DATA_FILES_PATH/server5.ku-ds.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8320 "$P_CLI debug_level=3" \
8321 0 \
8322 -C "bad certificate (usage extensions)" \
8323 -C "Processing of the Certificate handshake message failed" \
8324 -c "Ciphersuite is"
8325
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8326requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8327requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8328run_test "keyUsage cli 1.3: KeyEncipherment, ECDSA: fail (hard)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8329 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server5.key \
8330 -cert $DATA_FILES_PATH/server5.ku-ke.crt" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8331 "$P_CLI debug_level=3" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8332 1 \
8333 -c "bad certificate (usage extensions)" \
8334 -c "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8335 -C "Ciphersuite is" \
8336 -c "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8337 -c "! Usage does not match the keyUsage extension"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8338 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8339
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8340requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8341requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8342run_test "keyUsage cli 1.3: KeyAgreement, ECDSA: fail (hard)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8343 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server5.key \
8344 -cert $DATA_FILES_PATH/server5.ku-ka.crt" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8345 "$P_CLI debug_level=3" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8346 1 \
8347 -c "bad certificate (usage extensions)" \
8348 -c "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8349 -C "Ciphersuite is" \
8350 -c "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8351 -c "! Usage does not match the keyUsage extension"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8352 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8353
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8354# Tests for keyUsage in leaf certificates, part 3:
8355# server-side checking of client cert
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8356#
8357# Here, both 1.2 and 1.3 only use signatures.
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8358
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8359requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8360run_test "keyUsage cli-auth 1.2: RSA, DigitalSignature: OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8361 "$P_SRV debug_level=1 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8362 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server2.key \
8363 -cert $DATA_FILES_PATH/server2.ku-ds.crt" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8364 0 \
Ronald Cronf9c13fe2022-06-22 14:35:17 +0200[diff] [blame]8365 -s "Verifying peer X.509 certificate... ok" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8366 -S "bad certificate (usage extensions)" \
8367 -S "Processing of the Certificate handshake message failed"
8368
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8369requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8370run_test "keyUsage cli-auth 1.2: RSA, DigitalSignature+KeyEncipherment: OK" \
8371 "$P_SRV debug_level=1 auth_mode=optional" \
8372 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server2.key \
8373 -cert $DATA_FILES_PATH/server2.ku-ds_ke.crt" \
8374 0 \
8375 -s "Verifying peer X.509 certificate... ok" \
8376 -S "bad certificate (usage extensions)" \
8377 -S "Processing of the Certificate handshake message failed"
8378
8379requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8380run_test "keyUsage cli-auth 1.2: RSA, KeyEncipherment: fail (soft)" \
8381 "$P_SRV debug_level=3 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8382 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server2.key \
8383 -cert $DATA_FILES_PATH/server2.ku-ke.crt" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8384 0 \
8385 -s "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8386 -S "send alert level=2 message=43" \
8387 -s "! Usage does not match the keyUsage extension" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8388 -S "Processing of the Certificate handshake message failed"
8389
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8390requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8391run_test "keyUsage cli-auth 1.2: RSA, KeyEncipherment: fail (hard)" \
8392 "$P_SRV debug_level=3 force_version=tls12 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8393 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server2.key \
8394 -cert $DATA_FILES_PATH/server2.ku-ke.crt" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8395 1 \
8396 -s "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8397 -s "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8398 -s "! Usage does not match the keyUsage extension" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8399 -s "Processing of the Certificate handshake message failed"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8400 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8401
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8402requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8403run_test "keyUsage cli-auth 1.2: ECDSA, DigitalSignature: OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8404 "$P_SRV debug_level=1 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8405 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server5.key \
8406 -cert $DATA_FILES_PATH/server5.ku-ds.crt" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8407 0 \
Ronald Cronf9c13fe2022-06-22 14:35:17 +0200[diff] [blame]8408 -s "Verifying peer X.509 certificate... ok" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8409 -S "bad certificate (usage extensions)" \
8410 -S "Processing of the Certificate handshake message failed"
8411
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8412requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8413run_test "keyUsage cli-auth 1.2: ECDSA, KeyAgreement: fail (soft)" \
8414 "$P_SRV debug_level=3 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8415 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server5.key \
8416 -cert $DATA_FILES_PATH/server5.ku-ka.crt" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8417 0 \
8418 -s "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8419 -S "send alert level=2 message=43" \
8420 -s "! Usage does not match the keyUsage extension" \
Manuel Pégourié-Gonnarda9db85d2014-04-09 14:53:05 +0200[diff] [blame]8421 -S "Processing of the Certificate handshake message failed"
8422
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8423requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
8424run_test "keyUsage cli-auth 1.2: ECDSA, KeyAgreement: fail (hard)" \
8425 "$P_SRV debug_level=3 auth_mode=required" \
8426 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server5.key \
8427 -cert $DATA_FILES_PATH/server5.ku-ka.crt" \
8428 1 \
8429 -s "bad certificate (usage extensions)" \
8430 -s "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8431 -s "! Usage does not match the keyUsage extension" \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8432 -s "Processing of the Certificate handshake message failed"
8433 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
8434
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8435requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8436requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8437run_test "keyUsage cli-auth 1.3: RSA, DigitalSignature: OK" \
Ronald Cron89ca9772022-10-17 14:56:45 +0200[diff] [blame]8438 "$P_SRV debug_level=1 force_version=tls13 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8439 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server2.key \
8440 -cert $DATA_FILES_PATH/server2-sha256.ku-ds.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8441 0 \
Ronald Cronf9c13fe2022-06-22 14:35:17 +0200[diff] [blame]8442 -s "Verifying peer X.509 certificate... ok" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8443 -S "bad certificate (usage extensions)" \
8444 -S "Processing of the Certificate handshake message failed"
8445
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8446requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8447requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard52c0f5a2024-08-08 12:19:46 +0200[diff] [blame]8448run_test "keyUsage cli-auth 1.3: RSA, DigitalSignature+KeyEncipherment: OK" \
Ronald Cron89ca9772022-10-17 14:56:45 +0200[diff] [blame]8449 "$P_SRV debug_level=1 force_version=tls13 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8450 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server2.key \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8451 -cert $DATA_FILES_PATH/server2-sha256.ku-ds_ke.crt" \
8452 0 \
8453 -s "Verifying peer X.509 certificate... ok" \
8454 -S "bad certificate (usage extensions)" \
8455 -S "Processing of the Certificate handshake message failed"
8456
8457requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8458requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8459run_test "keyUsage cli-auth 1.3: RSA, KeyEncipherment: fail (soft)" \
8460 "$P_SRV debug_level=3 force_version=tls13 auth_mode=optional" \
8461 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server2.key \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8462 -cert $DATA_FILES_PATH/server2-sha256.ku-ke.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8463 0 \
8464 -s "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8465 -S "send alert level=2 message=43" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8466 -s "! Usage does not match the keyUsage extension" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8467 -S "Processing of the Certificate handshake message failed"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8468
8469requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8470requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8471run_test "keyUsage cli-auth 1.3: RSA, KeyEncipherment: fail (hard)" \
8472 "$P_SRV debug_level=3 force_version=tls13 auth_mode=required" \
Manuel Pégourié-Gonnardcdd5b072024-08-12 09:50:18 +0200[diff] [blame]8473 "$P_CLI key_file=$DATA_FILES_PATH/server2.key \
8474 crt_file=$DATA_FILES_PATH/server2-sha256.ku-ke.crt" \
8475 1 \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8476 -s "bad certificate (usage extensions)" \
8477 -s "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8478 -s "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8479 -s "! Usage does not match the keyUsage extension" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8480 -s "! mbedtls_ssl_handshake returned"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8481 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8482
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8483requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8484requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8485run_test "keyUsage cli-auth 1.3: ECDSA, DigitalSignature: OK" \
Ronald Cron89ca9772022-10-17 14:56:45 +0200[diff] [blame]8486 "$P_SRV debug_level=1 force_version=tls13 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8487 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server5.key \
8488 -cert $DATA_FILES_PATH/server5.ku-ds.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8489 0 \
Ronald Cronf9c13fe2022-06-22 14:35:17 +0200[diff] [blame]8490 -s "Verifying peer X.509 certificate... ok" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8491 -S "bad certificate (usage extensions)" \
8492 -S "Processing of the Certificate handshake message failed"
8493
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8494requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8495requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8496run_test "keyUsage cli-auth 1.3: ECDSA, KeyAgreement: fail (soft)" \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8497 "$P_SRV debug_level=3 force_version=tls13 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8498 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server5.key \
8499 -cert $DATA_FILES_PATH/server5.ku-ka.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8500 0 \
8501 -s "bad certificate (usage extensions)" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8502 -s "! Usage does not match the keyUsage extension" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8503 -S "Processing of the Certificate handshake message failed"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8504
8505requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8506requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8507run_test "keyUsage cli-auth 1.3: ECDSA, KeyAgreement: fail (hard)" \
8508 "$P_SRV debug_level=3 force_version=tls13 auth_mode=required" \
Manuel Pégourié-Gonnardcdd5b072024-08-12 09:50:18 +0200[diff] [blame]8509 "$P_CLI key_file=$DATA_FILES_PATH/server5.key \
8510 crt_file=$DATA_FILES_PATH/server5.ku-ka.crt" \
8511 1 \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8512 -s "bad certificate (usage extensions)" \
8513 -s "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnardef41d8c2024-08-08 10:28:56 +0200[diff] [blame]8514 -s "send alert level=2 message=43" \
Manuel Pégourié-Gonnard013d0792024-08-08 10:56:41 +0200[diff] [blame]8515 -s "! Usage does not match the keyUsage extension" \
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8516 -s "! mbedtls_ssl_handshake returned"
Manuel Pégourié-Gonnard36d1b4a2024-08-06 12:14:04 +0200[diff] [blame]8517 # MBEDTLS_X509_BADCERT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8518
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8519# Tests for extendedKeyUsage, part 1: server-side certificate/suite selection
8520
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8521run_test "extKeyUsage srv: serverAuth -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8522 "$P_SRV key_file=$DATA_FILES_PATH/server5.key \
8523 crt_file=$DATA_FILES_PATH/server5.eku-srv.crt" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8524 "$P_CLI" \
8525 0
8526
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8527run_test "extKeyUsage srv: serverAuth,clientAuth -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8528 "$P_SRV key_file=$DATA_FILES_PATH/server5.key \
8529 crt_file=$DATA_FILES_PATH/server5.eku-srv.crt" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8530 "$P_CLI" \
8531 0
8532
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8533run_test "extKeyUsage srv: codeSign,anyEKU -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8534 "$P_SRV key_file=$DATA_FILES_PATH/server5.key \
8535 crt_file=$DATA_FILES_PATH/server5.eku-cs_any.crt" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8536 "$P_CLI" \
8537 0
8538
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8539run_test "extKeyUsage srv: codeSign -> fail" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8540 "$P_SRV key_file=$DATA_FILES_PATH/server5.key \
8541 crt_file=$DATA_FILES_PATH/server5.eku-cli.crt" \
Manuel Pégourié-Gonnard7eb58cb2015-07-07 11:54:14 +0200[diff] [blame]8542 "$P_CLI" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8543 1
8544
8545# Tests for extendedKeyUsage, part 2: client-side checking of server cert
8546
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8547requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8548run_test "extKeyUsage cli 1.2: serverAuth -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8549 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server5.key \
8550 -cert $DATA_FILES_PATH/server5.eku-srv.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8551 "$P_CLI debug_level=1" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8552 0 \
8553 -C "bad certificate (usage extensions)" \
8554 -C "Processing of the Certificate handshake message failed" \
8555 -c "Ciphersuite is TLS-"
8556
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8557requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8558run_test "extKeyUsage cli 1.2: serverAuth,clientAuth -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8559 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server5.key \
8560 -cert $DATA_FILES_PATH/server5.eku-srv_cli.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8561 "$P_CLI debug_level=1" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8562 0 \
8563 -C "bad certificate (usage extensions)" \
8564 -C "Processing of the Certificate handshake message failed" \
8565 -c "Ciphersuite is TLS-"
8566
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8567requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8568run_test "extKeyUsage cli 1.2: codeSign,anyEKU -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8569 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server5.key \
8570 -cert $DATA_FILES_PATH/server5.eku-cs_any.crt" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8571 "$P_CLI debug_level=1" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8572 0 \
8573 -C "bad certificate (usage extensions)" \
8574 -C "Processing of the Certificate handshake message failed" \
8575 -c "Ciphersuite is TLS-"
8576
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8577requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaite04db1fb2024-08-16 17:18:28 +0100[diff] [blame]8578run_test "extKeyUsage cli 1.2: codeSign -> fail (soft)" \
8579 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server5.key \
8580 -cert $DATA_FILES_PATH/server5.eku-cs.crt" \
8581 "$P_CLI debug_level=3 auth_mode=optional" \
8582 0 \
8583 -c "bad certificate (usage extensions)" \
8584 -C "Processing of the Certificate handshake message failed" \
8585 -c "Ciphersuite is TLS-" \
8586 -C "send alert level=2 message=43" \
8587 -c "! Usage does not match the extendedKeyUsage extension"
8588 # MBEDTLS_X509_BADCERT_EXT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
8589
8590requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8591run_test "extKeyUsage cli 1.2: codeSign -> fail (hard)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8592 "$O_SRV -tls1_2 -key $DATA_FILES_PATH/server5.key \
8593 -cert $DATA_FILES_PATH/server5.eku-cs.crt" \
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8594 "$P_CLI debug_level=3" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8595 1 \
8596 -c "bad certificate (usage extensions)" \
8597 -c "Processing of the Certificate handshake message failed" \
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8598 -C "Ciphersuite is TLS-" \
8599 -c "send alert level=2 message=43" \
8600 -c "! Usage does not match the extendedKeyUsage extension"
8601 # MBEDTLS_X509_BADCERT_EXT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8602
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8603requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8604requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8605run_test "extKeyUsage cli 1.3: serverAuth -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8606 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server5.key \
8607 -cert $DATA_FILES_PATH/server5.eku-srv.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8608 "$P_CLI debug_level=1" \
8609 0 \
8610 -C "bad certificate (usage extensions)" \
8611 -C "Processing of the Certificate handshake message failed" \
8612 -c "Ciphersuite is"
8613
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8614requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8615requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8616run_test "extKeyUsage cli 1.3: serverAuth,clientAuth -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8617 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server5.key \
8618 -cert $DATA_FILES_PATH/server5.eku-srv_cli.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8619 "$P_CLI debug_level=1" \
8620 0 \
8621 -C "bad certificate (usage extensions)" \
8622 -C "Processing of the Certificate handshake message failed" \
8623 -c "Ciphersuite is"
8624
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8625requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8626requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8627run_test "extKeyUsage cli 1.3: codeSign,anyEKU -> OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8628 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server5.key \
8629 -cert $DATA_FILES_PATH/server5.eku-cs_any.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8630 "$P_CLI debug_level=1" \
8631 0 \
8632 -C "bad certificate (usage extensions)" \
8633 -C "Processing of the Certificate handshake message failed" \
8634 -c "Ciphersuite is"
8635
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8636requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8637requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8638run_test "extKeyUsage cli 1.3: codeSign -> fail (hard)" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8639 "$O_NEXT_SRV_NO_CERT -tls1_3 -num_tickets=0 -key $DATA_FILES_PATH/server5.key \
8640 -cert $DATA_FILES_PATH/server5.eku-cs.crt" \
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8641 "$P_CLI debug_level=3" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8642 1 \
8643 -c "bad certificate (usage extensions)" \
8644 -c "Processing of the Certificate handshake message failed" \
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8645 -C "Ciphersuite is" \
8646 -c "send alert level=2 message=43" \
8647 -c "! Usage does not match the extendedKeyUsage extension"
8648 # MBEDTLS_X509_BADCERT_EXT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8649
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8650# Tests for extendedKeyUsage, part 3: server-side checking of client cert
8651
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8652requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8653run_test "extKeyUsage cli-auth 1.2: clientAuth -> OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8654 "$P_SRV debug_level=1 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8655 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server5.key \
8656 -cert $DATA_FILES_PATH/server5.eku-cli.crt" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8657 0 \
8658 -S "bad certificate (usage extensions)" \
8659 -S "Processing of the Certificate handshake message failed"
8660
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8661requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8662run_test "extKeyUsage cli-auth 1.2: serverAuth,clientAuth -> OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8663 "$P_SRV debug_level=1 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8664 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server5.key \
8665 -cert $DATA_FILES_PATH/server5.eku-srv_cli.crt" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8666 0 \
8667 -S "bad certificate (usage extensions)" \
8668 -S "Processing of the Certificate handshake message failed"
8669
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8670requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8671run_test "extKeyUsage cli-auth 1.2: codeSign,anyEKU -> OK" \
Manuel Pégourié-Gonnard644e8f32014-08-30 21:59:31 +0200[diff] [blame]8672 "$P_SRV debug_level=1 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8673 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server5.key \
8674 -cert $DATA_FILES_PATH/server5.eku-cs_any.crt" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8675 0 \
8676 -S "bad certificate (usage extensions)" \
8677 -S "Processing of the Certificate handshake message failed"
8678
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8679requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8680run_test "extKeyUsage cli-auth 1.2: codeSign -> fail (soft)" \
8681 "$P_SRV debug_level=3 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8682 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server5.key \
8683 -cert $DATA_FILES_PATH/server5.eku-cs.crt" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8684 0 \
8685 -s "bad certificate (usage extensions)" \
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8686 -S "send alert level=2 message=43" \
8687 -s "! Usage does not match the extendedKeyUsage extension" \
8688 -S "Processing of the Certificate handshake message failed" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8689
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]8690requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8691run_test "extKeyUsage cli-auth 1.2: codeSign -> fail (hard)" \
8692 "$P_SRV debug_level=3 auth_mode=required" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8693 "$O_CLI -tls1_2 -key $DATA_FILES_PATH/server5.key \
8694 -cert $DATA_FILES_PATH/server5.eku-cs.crt" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8695 1 \
8696 -s "bad certificate (usage extensions)" \
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8697 -s "send alert level=2 message=43" \
8698 -s "! Usage does not match the extendedKeyUsage extension" \
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8699 -s "Processing of the Certificate handshake message failed"
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8700 # MBEDTLS_X509_BADCERT_EXT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
Manuel Pégourié-Gonnard0408fd12014-04-11 11:06:22 +0200[diff] [blame]8701
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8702requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8703requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8704run_test "extKeyUsage cli-auth 1.3: clientAuth -> OK" \
Ronald Cron89ca9772022-10-17 14:56:45 +0200[diff] [blame]8705 "$P_SRV debug_level=1 force_version=tls13 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8706 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server5.key \
8707 -cert $DATA_FILES_PATH/server5.eku-cli.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8708 0 \
8709 -S "bad certificate (usage extensions)" \
8710 -S "Processing of the Certificate handshake message failed"
8711
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8712requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8713requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8714run_test "extKeyUsage cli-auth 1.3: serverAuth,clientAuth -> OK" \
Ronald Cron89ca9772022-10-17 14:56:45 +0200[diff] [blame]8715 "$P_SRV debug_level=1 force_version=tls13 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8716 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server5.key \
8717 -cert $DATA_FILES_PATH/server5.eku-srv_cli.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8718 0 \
8719 -S "bad certificate (usage extensions)" \
8720 -S "Processing of the Certificate handshake message failed"
8721
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8722requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8723requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8724run_test "extKeyUsage cli-auth 1.3: codeSign,anyEKU -> OK" \
Ronald Cron89ca9772022-10-17 14:56:45 +0200[diff] [blame]8725 "$P_SRV debug_level=1 force_version=tls13 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8726 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server5.key \
8727 -cert $DATA_FILES_PATH/server5.eku-cs_any.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8728 0 \
8729 -S "bad certificate (usage extensions)" \
8730 -S "Processing of the Certificate handshake message failed"
8731
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]8732requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8733requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8734run_test "extKeyUsage cli-auth 1.3: codeSign -> fail (soft)" \
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8735 "$P_SRV debug_level=3 force_version=tls13 auth_mode=optional" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8736 "$O_NEXT_CLI_NO_CERT -key $DATA_FILES_PATH/server5.key \
8737 -cert $DATA_FILES_PATH/server5.eku-cs.crt" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8738 0 \
8739 -s "bad certificate (usage extensions)" \
Elena Uziunaitee74c8402024-08-15 15:24:09 +0100[diff] [blame]8740 -S "send alert level=2 message=43" \
8741 -s "! Usage does not match the extendedKeyUsage extension" \
Ronald Crond28f5a92022-06-16 19:27:25 +0200[diff] [blame]8742 -S "Processing of the Certificate handshake message failed"
8743
Elena Uziunaite04db1fb2024-08-16 17:18:28 +0100[diff] [blame]8744requires_openssl_tls1_3_with_compatible_ephemeral
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]8745requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Elena Uziunaite04db1fb2024-08-16 17:18:28 +0100[diff] [blame]8746run_test "extKeyUsage cli-auth 1.3: codeSign -> fail (hard)" \
8747 "$P_SRV debug_level=3 force_version=tls13 auth_mode=required" \
8748 "$P_CLI key_file=$DATA_FILES_PATH/server5.key \
8749 crt_file=$DATA_FILES_PATH/server5.eku-cs.crt" \
8750 1 \
8751 -s "bad certificate (usage extensions)" \
8752 -s "send alert level=2 message=43" \
8753 -s "! Usage does not match the extendedKeyUsage extension" \
8754 -s "Processing of the Certificate handshake message failed"
8755 # MBEDTLS_X509_BADCERT_EXT_KEY_USAGE -> MBEDTLS_SSL_ALERT_MSG_UNSUPPORTED_CERT
8756
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]8757# Tests for DHM parameters loading
8758
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8759run_test "DHM parameters: reference" \
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]8760 "$P_SRV" \
8761 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8762 debug_level=3" \
8763 0 \
8764 -c "value of 'DHM: P ' (2048 bits)" \
Hanno Becker13be9902017-09-27 17:17:30 +0100[diff] [blame]8765 -c "value of 'DHM: G ' (2 bits)"
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]8766
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8767run_test "DHM parameters: other parameters" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8768 "$P_SRV dhm_file=$DATA_FILES_PATH/dhparams.pem" \
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]8769 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8770 debug_level=3" \
8771 0 \
8772 -c "value of 'DHM: P ' (1024 bits)" \
8773 -c "value of 'DHM: G ' (2 bits)"
8774
Manuel Pégourié-Gonnard7a010aa2015-06-12 11:19:10 +0200[diff] [blame]8775# Tests for DHM client-side size checking
8776
8777run_test "DHM size: server default, client default, OK" \
8778 "$P_SRV" \
8779 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8780 debug_level=1" \
8781 0 \
8782 -C "DHM prime too short:"
8783
8784run_test "DHM size: server default, client 2048, OK" \
8785 "$P_SRV" \
8786 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8787 debug_level=1 dhmlen=2048" \
8788 0 \
8789 -C "DHM prime too short:"
8790
8791run_test "DHM size: server 1024, client default, OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8792 "$P_SRV dhm_file=$DATA_FILES_PATH/dhparams.pem" \
Manuel Pégourié-Gonnard7a010aa2015-06-12 11:19:10 +0200[diff] [blame]8793 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8794 debug_level=1" \
8795 0 \
8796 -C "DHM prime too short:"
8797
Gilles Peskinec6b0d962020-12-08 22:31:52 +0100[diff] [blame]8798run_test "DHM size: server 999, client 999, OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8799 "$P_SRV dhm_file=$DATA_FILES_PATH/dh.999.pem" \
Gilles Peskinec6b0d962020-12-08 22:31:52 +0100[diff] [blame]8800 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8801 debug_level=1 dhmlen=999" \
8802 0 \
8803 -C "DHM prime too short:"
8804
8805run_test "DHM size: server 1000, client 1000, OK" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8806 "$P_SRV dhm_file=$DATA_FILES_PATH/dh.1000.pem" \
Gilles Peskinec6b0d962020-12-08 22:31:52 +0100[diff] [blame]8807 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8808 debug_level=1 dhmlen=1000" \
8809 0 \
8810 -C "DHM prime too short:"
8811
Manuel Pégourié-Gonnard7a010aa2015-06-12 11:19:10 +0200[diff] [blame]8812run_test "DHM size: server 1000, client default, rejected" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8813 "$P_SRV dhm_file=$DATA_FILES_PATH/dh.1000.pem" \
Manuel Pégourié-Gonnard7a010aa2015-06-12 11:19:10 +0200[diff] [blame]8814 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8815 debug_level=1" \
8816 1 \
8817 -c "DHM prime too short:"
8818
Gilles Peskinec6b0d962020-12-08 22:31:52 +0100[diff] [blame]8819run_test "DHM size: server 1000, client 1001, rejected" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8820 "$P_SRV dhm_file=$DATA_FILES_PATH/dh.1000.pem" \
Gilles Peskinec6b0d962020-12-08 22:31:52 +0100[diff] [blame]8821 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8822 debug_level=1 dhmlen=1001" \
8823 1 \
8824 -c "DHM prime too short:"
8825
8826run_test "DHM size: server 999, client 1000, rejected" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8827 "$P_SRV dhm_file=$DATA_FILES_PATH/dh.999.pem" \
Gilles Peskinec6b0d962020-12-08 22:31:52 +0100[diff] [blame]8828 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8829 debug_level=1 dhmlen=1000" \
8830 1 \
8831 -c "DHM prime too short:"
8832
8833run_test "DHM size: server 998, client 999, rejected" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]8834 "$P_SRV dhm_file=$DATA_FILES_PATH/dh.998.pem" \
Gilles Peskinec6b0d962020-12-08 22:31:52 +0100[diff] [blame]8835 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8836 debug_level=1 dhmlen=999" \
8837 1 \
8838 -c "DHM prime too short:"
8839
Manuel Pégourié-Gonnard7a010aa2015-06-12 11:19:10 +0200[diff] [blame]8840run_test "DHM size: server default, client 2049, rejected" \
8841 "$P_SRV" \
8842 "$P_CLI force_ciphersuite=TLS-DHE-RSA-WITH-AES-128-CBC-SHA \
8843 debug_level=1 dhmlen=2049" \
8844 1 \
8845 -c "DHM prime too short:"
8846
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]8847# Tests for PSK callback
8848
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]8849run_test "PSK callback: psk, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8850 "$P_SRV psk=73776f726466697368 psk_identity=foo" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]8851 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8852 psk_identity=foo psk=73776f726466697368" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]8853 0 \
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]8854 -S "SSL - The handshake negotiation failed" \
Manuel Pégourié-Gonnard10c3c9f2014-06-10 15:28:52 +0200[diff] [blame]8855 -S "SSL - Unknown identity received" \
8856 -S "SSL - Verification of the message MAC failed"
8857
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8858requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
8859run_test "PSK callback: opaque psk on client, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8860 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]8861 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8862 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8863 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]8864 -C "session hash for extended master secret"\
8865 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]8866 -S "SSL - The handshake negotiation failed" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8867 -S "SSL - Unknown identity received" \
8868 -S "SSL - Verification of the message MAC failed"
8869
8870requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
8871run_test "PSK callback: opaque psk on client, no callback, SHA-384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8872 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]8873 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8874 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8875 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]8876 -C "session hash for extended master secret"\
8877 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]8878 -S "SSL - The handshake negotiation failed" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8879 -S "SSL - Unknown identity received" \
8880 -S "SSL - Verification of the message MAC failed"
8881
8882requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
8883run_test "PSK callback: opaque psk on client, no callback, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8884 "$P_SRV extended_ms=1 debug_level=3 psk=73776f726466697368 psk_identity=foo" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]8885 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8886 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8887 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]8888 -c "session hash for extended master secret"\
8889 -s "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]8890 -S "SSL - The handshake negotiation failed" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8891 -S "SSL - Unknown identity received" \
8892 -S "SSL - Verification of the message MAC failed"
8893
8894requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
8895run_test "PSK callback: opaque psk on client, no callback, SHA-384, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8896 "$P_SRV extended_ms=1 debug_level=3 psk=73776f726466697368 psk_identity=foo" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]8897 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8898 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8899 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]8900 -c "session hash for extended master secret"\
8901 -s "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]8902 -S "SSL - The handshake negotiation failed" \
Hanno Beckerf7027512018-10-23 15:27:39 +0100[diff] [blame]8903 -S "SSL - Unknown identity received" \
8904 -S "SSL - Verification of the message MAC failed"
8905
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]8906requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8907run_test "PSK callback: opaque rsa-psk on client, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8908 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8909 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA256 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8910 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8911 0 \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8912 -C "session hash for extended master secret"\
8913 -S "session hash for extended master secret"\
8914 -S "SSL - The handshake negotiation failed" \
8915 -S "SSL - Unknown identity received" \
8916 -S "SSL - Verification of the message MAC failed"
8917
8918requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8919run_test "PSK callback: opaque rsa-psk on client, no callback, SHA-384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8920 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8921 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8922 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8923 0 \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8924 -C "session hash for extended master secret"\
8925 -S "session hash for extended master secret"\
8926 -S "SSL - The handshake negotiation failed" \
8927 -S "SSL - Unknown identity received" \
8928 -S "SSL - Verification of the message MAC failed"
8929
8930requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8931run_test "PSK callback: opaque rsa-psk on client, no callback, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8932 "$P_SRV extended_ms=1 debug_level=3 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8933 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8934 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8935 0 \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8936 -c "session hash for extended master secret"\
8937 -s "session hash for extended master secret"\
8938 -S "SSL - The handshake negotiation failed" \
8939 -S "SSL - Unknown identity received" \
8940 -S "SSL - Verification of the message MAC failed"
8941
8942requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8943run_test "PSK callback: opaque rsa-psk on client, no callback, SHA-384, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8944 "$P_SRV extended_ms=1 debug_level=3 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8945 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8946 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8947 0 \
Przemek Stekiel8e0495e2022-04-05 23:00:04 +0200[diff] [blame]8948 -c "session hash for extended master secret"\
8949 -s "session hash for extended master secret"\
8950 -S "SSL - The handshake negotiation failed" \
8951 -S "SSL - Unknown identity received" \
8952 -S "SSL - Verification of the message MAC failed"
8953
8954requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]8955run_test "PSK callback: opaque ecdhe-psk on client, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8956 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]8957 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA256 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8958 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]8959 0 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]8960 -C "session hash for extended master secret"\
8961 -S "session hash for extended master secret"\
8962 -S "SSL - The handshake negotiation failed" \
8963 -S "SSL - Unknown identity received" \
8964 -S "SSL - Verification of the message MAC failed"
8965
8966requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]8967run_test "PSK callback: opaque ecdhe-psk on client, no callback, SHA-384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8968 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]8969 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8970 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]8971 0 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]8972 -C "session hash for extended master secret"\
8973 -S "session hash for extended master secret"\
8974 -S "SSL - The handshake negotiation failed" \
8975 -S "SSL - Unknown identity received" \
8976 -S "SSL - Verification of the message MAC failed"
8977
8978requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]8979run_test "PSK callback: opaque ecdhe-psk on client, no callback, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8980 "$P_SRV extended_ms=1 debug_level=3 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]8981 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8982 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]8983 0 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]8984 -c "session hash for extended master secret"\
8985 -s "session hash for extended master secret"\
8986 -S "SSL - The handshake negotiation failed" \
8987 -S "SSL - Unknown identity received" \
8988 -S "SSL - Verification of the message MAC failed"
8989
8990requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]8991run_test "PSK callback: opaque ecdhe-psk on client, no callback, SHA-384, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8992 "$P_SRV extended_ms=1 debug_level=3 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]8993 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]8994 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]8995 0 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]8996 -c "session hash for extended master secret"\
8997 -s "session hash for extended master secret"\
8998 -S "SSL - The handshake negotiation failed" \
8999 -S "SSL - Unknown identity received" \
9000 -S "SSL - Verification of the message MAC failed"
9001
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9002requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9003run_test "PSK callback: opaque dhe-psk on client, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9004 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9005 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA256 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9006 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9007 0 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9008 -C "session hash for extended master secret"\
9009 -S "session hash for extended master secret"\
9010 -S "SSL - The handshake negotiation failed" \
9011 -S "SSL - Unknown identity received" \
9012 -S "SSL - Verification of the message MAC failed"
9013
9014requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9015run_test "PSK callback: opaque dhe-psk on client, no callback, SHA-384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9016 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9017 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9018 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9019 0 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9020 -C "session hash for extended master secret"\
9021 -S "session hash for extended master secret"\
9022 -S "SSL - The handshake negotiation failed" \
9023 -S "SSL - Unknown identity received" \
9024 -S "SSL - Verification of the message MAC failed"
9025
9026requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9027run_test "PSK callback: opaque dhe-psk on client, no callback, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9028 "$P_SRV extended_ms=1 debug_level=3 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9029 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9030 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9031 0 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9032 -c "session hash for extended master secret"\
9033 -s "session hash for extended master secret"\
9034 -S "SSL - The handshake negotiation failed" \
9035 -S "SSL - Unknown identity received" \
9036 -S "SSL - Verification of the message MAC failed"
9037
9038requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9039run_test "PSK callback: opaque dhe-psk on client, no callback, SHA-384, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9040 "$P_SRV extended_ms=1 debug_level=3 psk=73776f726466697368 psk_identity=foo" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9041 "$P_CLI extended_ms=1 debug_level=3 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9042 psk_identity=foo psk=73776f726466697368 psk_opaque=1" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9043 0 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9044 -c "session hash for extended master secret"\
9045 -s "session hash for extended master secret"\
9046 -S "SSL - The handshake negotiation failed" \
9047 -S "SSL - Unknown identity received" \
9048 -S "SSL - Verification of the message MAC failed"
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9049
9050requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9051run_test "PSK callback: raw psk on client, static opaque on server, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9052 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9053 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9054 psk_identity=foo psk=73776f726466697368" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9055 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9056 -C "session hash for extended master secret"\
9057 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9058 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9059 -S "SSL - Unknown identity received" \
9060 -S "SSL - Verification of the message MAC failed"
9061
9062requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9063run_test "PSK callback: raw psk on client, static opaque on server, no callback, SHA-384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9064 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9065 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9066 psk_identity=foo psk=73776f726466697368" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9067 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9068 -C "session hash for extended master secret"\
9069 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9070 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9071 -S "SSL - Unknown identity received" \
9072 -S "SSL - Verification of the message MAC failed"
9073
9074requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9075run_test "PSK callback: raw psk on client, static opaque on server, no callback, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9076 "$P_SRV debug_level=3 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9077 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9078 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9079 psk_identity=foo psk=73776f726466697368 extended_ms=1" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9080 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9081 -c "session hash for extended master secret"\
9082 -s "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9083 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9084 -S "SSL - Unknown identity received" \
9085 -S "SSL - Verification of the message MAC failed"
9086
9087requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9088run_test "PSK callback: raw psk on client, static opaque on server, no callback, EMS, SHA384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9089 "$P_SRV debug_level=3 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9090 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9091 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9092 psk_identity=foo psk=73776f726466697368 extended_ms=1" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9093 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9094 -c "session hash for extended master secret"\
9095 -s "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9096 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9097 -S "SSL - Unknown identity received" \
9098 -S "SSL - Verification of the message MAC failed"
9099
9100requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9101run_test "PSK callback: raw rsa-psk on client, static opaque on server, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9102 "$P_SRV extended_ms=0 debug_level=5 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA" \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9103 "$P_CLI extended_ms=0 debug_level=5 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9104 psk_identity=foo psk=73776f726466697368" \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9105 0 \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9106 -C "session hash for extended master secret"\
9107 -S "session hash for extended master secret"\
9108 -S "SSL - The handshake negotiation failed" \
9109 -S "SSL - Unknown identity received" \
9110 -S "SSL - Verification of the message MAC failed"
9111
9112requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9113run_test "PSK callback: raw rsa-psk on client, static opaque on server, no callback, SHA-384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9114 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384" \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9115 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9116 psk_identity=foo psk=73776f726466697368" \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9117 0 \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9118 -C "session hash for extended master secret"\
9119 -S "session hash for extended master secret"\
9120 -S "SSL - The handshake negotiation failed" \
9121 -S "SSL - Unknown identity received" \
9122 -S "SSL - Verification of the message MAC failed"
9123
9124requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9125run_test "PSK callback: raw rsa-psk on client, static opaque on server, no callback, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9126 "$P_SRV debug_level=3 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9127 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
9128 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9129 psk_identity=foo psk=73776f726466697368 extended_ms=1" \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9130 0 \
9131 -c "session hash for extended master secret"\
9132 -s "session hash for extended master secret"\
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9133 -S "SSL - The handshake negotiation failed" \
9134 -S "SSL - Unknown identity received" \
9135 -S "SSL - Verification of the message MAC failed"
9136
9137requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9138run_test "PSK callback: raw rsa-psk on client, static opaque on server, no callback, EMS, SHA384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9139 "$P_SRV debug_level=3 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9140 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
9141 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9142 psk_identity=foo psk=73776f726466697368 extended_ms=1" \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9143 0 \
9144 -c "session hash for extended master secret"\
9145 -s "session hash for extended master secret"\
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9146 -S "SSL - The handshake negotiation failed" \
9147 -S "SSL - Unknown identity received" \
9148 -S "SSL - Verification of the message MAC failed"
9149
9150requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9151run_test "PSK callback: raw ecdhe-psk on client, static opaque on server, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9152 "$P_SRV extended_ms=0 debug_level=5 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9153 "$P_CLI extended_ms=0 debug_level=5 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9154 psk_identity=foo psk=73776f726466697368" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9155 0 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9156 -C "session hash for extended master secret"\
9157 -S "session hash for extended master secret"\
9158 -S "SSL - The handshake negotiation failed" \
9159 -S "SSL - Unknown identity received" \
9160 -S "SSL - Verification of the message MAC failed"
9161
9162requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9163run_test "PSK callback: raw ecdhe-psk on client, static opaque on server, no callback, SHA-384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9164 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9165 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9166 psk_identity=foo psk=73776f726466697368" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9167 0 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9168 -C "session hash for extended master secret"\
9169 -S "session hash for extended master secret"\
9170 -S "SSL - The handshake negotiation failed" \
9171 -S "SSL - Unknown identity received" \
9172 -S "SSL - Verification of the message MAC failed"
9173
9174requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9175run_test "PSK callback: raw ecdhe-psk on client, static opaque on server, no callback, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9176 "$P_SRV debug_level=3 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9177 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
9178 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9179 psk_identity=foo psk=73776f726466697368 extended_ms=1" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9180 0 \
9181 -c "session hash for extended master secret"\
9182 -s "session hash for extended master secret"\
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9183 -S "SSL - The handshake negotiation failed" \
9184 -S "SSL - Unknown identity received" \
9185 -S "SSL - Verification of the message MAC failed"
9186
9187requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9188run_test "PSK callback: raw ecdhe-psk on client, static opaque on server, no callback, EMS, SHA384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9189 "$P_SRV debug_level=3 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9190 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
9191 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9192 psk_identity=foo psk=73776f726466697368 extended_ms=1" \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9193 0 \
9194 -c "session hash for extended master secret"\
9195 -s "session hash for extended master secret"\
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9196 -S "SSL - The handshake negotiation failed" \
9197 -S "SSL - Unknown identity received" \
9198 -S "SSL - Verification of the message MAC failed"
9199
9200requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9201run_test "PSK callback: raw dhe-psk on client, static opaque on server, no callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9202 "$P_SRV extended_ms=0 debug_level=5 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9203 "$P_CLI extended_ms=0 debug_level=5 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9204 psk_identity=foo psk=73776f726466697368" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9205 0 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9206 -C "session hash for extended master secret"\
9207 -S "session hash for extended master secret"\
9208 -S "SSL - The handshake negotiation failed" \
9209 -S "SSL - Unknown identity received" \
9210 -S "SSL - Verification of the message MAC failed"
9211
9212requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9213run_test "PSK callback: raw dhe-psk on client, static opaque on server, no callback, SHA-384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9214 "$P_SRV extended_ms=0 debug_level=1 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9215 "$P_CLI extended_ms=0 debug_level=1 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9216 psk_identity=foo psk=73776f726466697368" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9217 0 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9218 -C "session hash for extended master secret"\
9219 -S "session hash for extended master secret"\
9220 -S "SSL - The handshake negotiation failed" \
9221 -S "SSL - Unknown identity received" \
9222 -S "SSL - Verification of the message MAC failed"
9223
9224requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9225run_test "PSK callback: raw dhe-psk on client, static opaque on server, no callback, EMS" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9226 "$P_SRV debug_level=3 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9227 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
9228 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9229 psk_identity=foo psk=73776f726466697368 extended_ms=1" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9230 0 \
9231 -c "session hash for extended master secret"\
9232 -s "session hash for extended master secret"\
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9233 -S "SSL - The handshake negotiation failed" \
9234 -S "SSL - Unknown identity received" \
9235 -S "SSL - Verification of the message MAC failed"
9236
9237requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9238run_test "PSK callback: raw dhe-psk on client, static opaque on server, no callback, EMS, SHA384" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9239 "$P_SRV debug_level=3 psk=73776f726466697368 psk_identity=foo psk_opaque=1 min_version=tls12 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9240 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
9241 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9242 psk_identity=foo psk=73776f726466697368 extended_ms=1" \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9243 0 \
9244 -c "session hash for extended master secret"\
9245 -s "session hash for extended master secret"\
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9246 -S "SSL - The handshake negotiation failed" \
9247 -S "SSL - Unknown identity received" \
9248 -S "SSL - Verification of the message MAC failed"
9249
9250requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9251run_test "PSK callback: raw psk on client, no static PSK on server, opaque PSK from callback" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9252 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
9253 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9254 psk_identity=def psk=beef" \
9255 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9256 -C "session hash for extended master secret"\
9257 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9258 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9259 -S "SSL - Unknown identity received" \
9260 -S "SSL - Verification of the message MAC failed"
9261
9262requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9263run_test "PSK callback: raw psk on client, no static PSK on server, opaque PSK from callback, SHA-384" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9264 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384" \
9265 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9266 psk_identity=def psk=beef" \
9267 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9268 -C "session hash for extended master secret"\
9269 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9270 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9271 -S "SSL - Unknown identity received" \
9272 -S "SSL - Verification of the message MAC failed"
9273
9274requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9275run_test "PSK callback: raw psk on client, no static PSK on server, opaque PSK from callback, EMS" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9276 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9277 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9278 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9279 psk_identity=abc psk=dead extended_ms=1" \
9280 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9281 -c "session hash for extended master secret"\
9282 -s "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9283 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9284 -S "SSL - Unknown identity received" \
9285 -S "SSL - Verification of the message MAC failed"
9286
9287requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9288run_test "PSK callback: raw psk on client, no static PSK on server, opaque PSK from callback, EMS, SHA384" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9289 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9290 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9291 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-256-CBC-SHA384 \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9292 psk_identity=abc psk=dead extended_ms=1" \
9293 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9294 -c "session hash for extended master secret"\
9295 -s "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9296 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9297 -S "SSL - Unknown identity received" \
9298 -S "SSL - Verification of the message MAC failed"
9299
9300requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9301run_test "PSK callback: raw rsa-psk on client, no static RSA-PSK on server, opaque RSA-PSK from callback" \
9302 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA" \
9303 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA \
9304 psk_identity=def psk=beef" \
9305 0 \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9306 -C "session hash for extended master secret"\
9307 -S "session hash for extended master secret"\
9308 -S "SSL - The handshake negotiation failed" \
9309 -S "SSL - Unknown identity received" \
9310 -S "SSL - Verification of the message MAC failed"
9311
9312requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9313run_test "PSK callback: raw rsa-psk on client, no static RSA-PSK on server, opaque RSA-PSK from callback, SHA-384" \
9314 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384" \
9315 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384 \
9316 psk_identity=def psk=beef" \
9317 0 \
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9318 -C "session hash for extended master secret"\
9319 -S "session hash for extended master secret"\
9320 -S "SSL - The handshake negotiation failed" \
9321 -S "SSL - Unknown identity received" \
9322 -S "SSL - Verification of the message MAC failed"
9323
9324requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9325run_test "PSK callback: raw rsa-psk on client, no static RSA-PSK on server, opaque RSA-PSK from callback, EMS" \
9326 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
9327 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
9328 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA \
9329 psk_identity=abc psk=dead extended_ms=1" \
9330 0 \
9331 -c "session hash for extended master secret"\
9332 -s "session hash for extended master secret"\
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9333 -S "SSL - The handshake negotiation failed" \
9334 -S "SSL - Unknown identity received" \
9335 -S "SSL - Verification of the message MAC failed"
9336
9337requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9338run_test "PSK callback: raw rsa-psk on client, no static RSA-PSK on server, opaque RSA-PSK from callback, EMS, SHA384" \
9339 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
9340 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
9341 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-RSA-PSK-WITH-AES-256-CBC-SHA384 \
9342 psk_identity=abc psk=dead extended_ms=1" \
9343 0 \
9344 -c "session hash for extended master secret"\
9345 -s "session hash for extended master secret"\
Przemek Stekielb270b562022-04-06 13:12:48 +0200[diff] [blame]9346 -S "SSL - The handshake negotiation failed" \
9347 -S "SSL - Unknown identity received" \
9348 -S "SSL - Verification of the message MAC failed"
9349
9350requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9351run_test "PSK callback: raw ecdhe-psk on client, no static ECDHE-PSK on server, opaque ECDHE-PSK from callback" \
9352 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA" \
9353 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA \
9354 psk_identity=def psk=beef" \
9355 0 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9356 -C "session hash for extended master secret"\
9357 -S "session hash for extended master secret"\
9358 -S "SSL - The handshake negotiation failed" \
9359 -S "SSL - Unknown identity received" \
9360 -S "SSL - Verification of the message MAC failed"
9361
9362requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9363run_test "PSK callback: raw ecdhe-psk on client, no static ECDHE-PSK on server, opaque ECDHE-PSK from callback, SHA-384" \
9364 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384" \
9365 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 \
9366 psk_identity=def psk=beef" \
9367 0 \
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9368 -C "session hash for extended master secret"\
9369 -S "session hash for extended master secret"\
9370 -S "SSL - The handshake negotiation failed" \
9371 -S "SSL - Unknown identity received" \
9372 -S "SSL - Verification of the message MAC failed"
9373
9374requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9375run_test "PSK callback: raw ecdhe-psk on client, no static ECDHE-PSK on server, opaque ECDHE-PSK from callback, EMS" \
9376 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
9377 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
9378 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-128-CBC-SHA \
9379 psk_identity=abc psk=dead extended_ms=1" \
9380 0 \
9381 -c "session hash for extended master secret"\
9382 -s "session hash for extended master secret"\
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9383 -S "SSL - The handshake negotiation failed" \
9384 -S "SSL - Unknown identity received" \
9385 -S "SSL - Verification of the message MAC failed"
9386
9387requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9388run_test "PSK callback: raw ecdhe-psk on client, no static ECDHE-PSK on server, opaque ECDHE-PSK from callback, EMS, SHA384" \
9389 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
9390 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
9391 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-ECDHE-PSK-WITH-AES-256-CBC-SHA384 \
9392 psk_identity=abc psk=dead extended_ms=1" \
9393 0 \
9394 -c "session hash for extended master secret"\
9395 -s "session hash for extended master secret"\
Przemek Stekielb6a05032022-04-14 10:22:18 +0200[diff] [blame]9396 -S "SSL - The handshake negotiation failed" \
9397 -S "SSL - Unknown identity received" \
9398 -S "SSL - Verification of the message MAC failed"
9399
9400requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9401run_test "PSK callback: raw dhe-psk on client, no static DHE-PSK on server, opaque DHE-PSK from callback" \
9402 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA" \
9403 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA \
9404 psk_identity=def psk=beef" \
9405 0 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9406 -C "session hash for extended master secret"\
9407 -S "session hash for extended master secret"\
9408 -S "SSL - The handshake negotiation failed" \
9409 -S "SSL - Unknown identity received" \
9410 -S "SSL - Verification of the message MAC failed"
9411
9412requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9413run_test "PSK callback: raw dhe-psk on client, no static DHE-PSK on server, opaque DHE-PSK from callback, SHA-384" \
9414 "$P_SRV extended_ms=0 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384" \
9415 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384 \
9416 psk_identity=def psk=beef" \
9417 0 \
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9418 -C "session hash for extended master secret"\
9419 -S "session hash for extended master secret"\
9420 -S "SSL - The handshake negotiation failed" \
9421 -S "SSL - Unknown identity received" \
9422 -S "SSL - Verification of the message MAC failed"
9423
9424requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9425run_test "PSK callback: raw dhe-psk on client, no static DHE-PSK on server, opaque DHE-PSK from callback, EMS" \
9426 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
9427 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA extended_ms=1" \
9428 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-128-CBC-SHA \
9429 psk_identity=abc psk=dead extended_ms=1" \
9430 0 \
9431 -c "session hash for extended master secret"\
9432 -s "session hash for extended master secret"\
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9433 -S "SSL - The handshake negotiation failed" \
9434 -S "SSL - Unknown identity received" \
9435 -S "SSL - Verification of the message MAC failed"
9436
9437requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9438run_test "PSK callback: raw dhe-psk on client, no static DHE-PSK on server, opaque DHE-PSK from callback, EMS, SHA384" \
9439 "$P_SRV debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 \
9440 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384 extended_ms=1" \
9441 "$P_CLI debug_level=3 min_version=tls12 force_ciphersuite=TLS-DHE-PSK-WITH-AES-256-CBC-SHA384 \
9442 psk_identity=abc psk=dead extended_ms=1" \
9443 0 \
9444 -c "session hash for extended master secret"\
9445 -s "session hash for extended master secret"\
Przemek Stekiel85d46fe2022-04-19 12:47:48 +0200[diff] [blame]9446 -S "SSL - The handshake negotiation failed" \
9447 -S "SSL - Unknown identity received" \
9448 -S "SSL - Verification of the message MAC failed"
9449
9450requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9451run_test "PSK callback: raw psk on client, mismatching static raw PSK on server, opaque PSK from callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9452 "$P_SRV extended_ms=0 psk_identity=foo psk=73776f726466697368 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9453 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9454 psk_identity=def psk=beef" \
9455 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9456 -C "session hash for extended master secret"\
9457 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9458 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9459 -S "SSL - Unknown identity received" \
9460 -S "SSL - Verification of the message MAC failed"
9461
9462requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9463run_test "PSK callback: raw psk on client, mismatching static opaque PSK on server, opaque PSK from callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9464 "$P_SRV extended_ms=0 psk_opaque=1 psk_identity=foo psk=73776f726466697368 debug_level=3 psk_list=abc,dead,def,beef psk_list_opaque=1 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9465 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9466 psk_identity=def psk=beef" \
9467 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9468 -C "session hash for extended master secret"\
9469 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9470 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9471 -S "SSL - Unknown identity received" \
9472 -S "SSL - Verification of the message MAC failed"
9473
9474requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9475run_test "PSK callback: raw psk on client, mismatching static opaque PSK on server, raw PSK from callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9476 "$P_SRV extended_ms=0 psk_opaque=1 psk_identity=foo psk=73776f726466697368 debug_level=3 psk_list=abc,dead,def,beef min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9477 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9478 psk_identity=def psk=beef" \
9479 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9480 -C "session hash for extended master secret"\
9481 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9482 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9483 -S "SSL - Unknown identity received" \
9484 -S "SSL - Verification of the message MAC failed"
9485
9486requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9487run_test "PSK callback: raw psk on client, id-matching but wrong raw PSK on server, opaque PSK from callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9488 "$P_SRV extended_ms=0 psk_opaque=1 psk_identity=def psk=73776f726466697368 debug_level=3 psk_list=abc,dead,def,beef min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9489 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9490 psk_identity=def psk=beef" \
9491 0 \
Manuel Pégourié-Gonnard8faa70e2019-05-20 12:09:50 +0200[diff] [blame]9492 -C "session hash for extended master secret"\
9493 -S "session hash for extended master secret"\
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9494 -S "SSL - The handshake negotiation failed" \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9495 -S "SSL - Unknown identity received" \
9496 -S "SSL - Verification of the message MAC failed"
9497
9498requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
9499run_test "PSK callback: raw psk on client, matching opaque PSK on server, wrong opaque PSK from callback" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9500 "$P_SRV extended_ms=0 psk_opaque=1 psk_identity=def psk=beef debug_level=3 psk_list=abc,dead,def,73776f726466697368 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9501 "$P_CLI extended_ms=0 debug_level=3 min_version=tls12 force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Hanno Becker28c79dc2018-10-26 13:15:08 +0100[diff] [blame]9502 psk_identity=def psk=beef" \
9503 1 \
9504 -s "SSL - Verification of the message MAC failed"
9505
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]9506run_test "PSK callback: no psk, no callback" \
Manuel Pégourié-Gonnard10c3c9f2014-06-10 15:28:52 +0200[diff] [blame]9507 "$P_SRV" \
9508 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9509 psk_identity=foo psk=73776f726466697368" \
Manuel Pégourié-Gonnard10c3c9f2014-06-10 15:28:52 +0200[diff] [blame]9510 1 \
Dave Rodgman6ce10be2021-06-29 14:20:31 +0100[diff] [blame]9511 -s "SSL - The handshake negotiation failed" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9512 -S "SSL - Unknown identity received" \
9513 -S "SSL - Verification of the message MAC failed"
9514
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]9515run_test "PSK callback: callback overrides other settings" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9516 "$P_SRV psk=73776f726466697368 psk_identity=foo psk_list=abc,dead,def,beef" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9517 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]9518 psk_identity=foo psk=73776f726466697368" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9519 1 \
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9520 -S "SSL - The handshake negotiation failed" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9521 -s "SSL - Unknown identity received" \
9522 -S "SSL - Verification of the message MAC failed"
9523
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]9524run_test "PSK callback: first id matches" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9525 "$P_SRV psk_list=abc,dead,def,beef" \
9526 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
9527 psk_identity=abc psk=dead" \
9528 0 \
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9529 -S "SSL - The handshake negotiation failed" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9530 -S "SSL - Unknown identity received" \
9531 -S "SSL - Verification of the message MAC failed"
9532
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]9533run_test "PSK callback: second id matches" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9534 "$P_SRV psk_list=abc,dead,def,beef" \
9535 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
9536 psk_identity=def psk=beef" \
9537 0 \
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9538 -S "SSL - The handshake negotiation failed" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9539 -S "SSL - Unknown identity received" \
9540 -S "SSL - Verification of the message MAC failed"
9541
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]9542run_test "PSK callback: no match" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9543 "$P_SRV psk_list=abc,dead,def,beef" \
9544 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
9545 psk_identity=ghi psk=beef" \
9546 1 \
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9547 -S "SSL - The handshake negotiation failed" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9548 -s "SSL - Unknown identity received" \
9549 -S "SSL - Verification of the message MAC failed"
9550
Manuel Pégourié-Gonnard8e03c712014-08-30 21:42:40 +0200[diff] [blame]9551run_test "PSK callback: wrong key" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9552 "$P_SRV psk_list=abc,dead,def,beef" \
9553 "$P_CLI force_ciphersuite=TLS-PSK-WITH-AES-128-CBC-SHA \
9554 psk_identity=abc psk=beef" \
9555 1 \
Dave Rodgmane5b828c2021-06-29 19:05:34 +0100[diff] [blame]9556 -S "SSL - The handshake negotiation failed" \
Manuel Pégourié-Gonnarda6781c92014-06-10 15:00:46 +0200[diff] [blame]9557 -S "SSL - Unknown identity received" \
9558 -s "SSL - Verification of the message MAC failed"
Manuel Pégourié-Gonnard0cc7e312014-06-09 11:36:47 +0200[diff] [blame]9559
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9560# Tests for EC J-PAKE
9561
Hanno Beckerfa452c42020-08-14 15:42:49 +0100[diff] [blame]9562requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]9563requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9564run_test "ECJPAKE: client not configured" \
9565 "$P_SRV debug_level=3" \
9566 "$P_CLI debug_level=3" \
9567 0 \
Hanno Beckeree63af62020-08-14 15:41:23 +0100[diff] [blame]9568 -C "add ciphersuite: 0xc0ff" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9569 -C "adding ecjpake_kkpp extension" \
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]9570 -S "found ecjpake kkpp extension" \
9571 -S "skip ecjpake kkpp extension" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9572 -S "ciphersuite mismatch: ecjpake not configured" \
Manuel Pégourié-Gonnard55c7f992015-09-16 15:35:27 +0200[diff] [blame]9573 -S "server hello, ecjpake kkpp extension" \
Manuel Pégourié-Gonnard0a1324a2015-09-16 16:01:00 +0200[diff] [blame]9574 -C "found ecjpake_kkpp extension" \
Dave Rodgman737237f2021-06-29 19:07:57 +0100[diff] [blame]9575 -S "SSL - The handshake negotiation failed"
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9576
Hanno Beckerfa452c42020-08-14 15:42:49 +0100[diff] [blame]9577requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9578run_test "ECJPAKE: server not configured" \
9579 "$P_SRV debug_level=3" \
9580 "$P_CLI debug_level=3 ecjpake_pw=bla \
9581 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9582 1 \
Ronald Cron7320e642022-03-08 13:34:49 +0100[diff] [blame]9583 -c "add ciphersuite: c0ff" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9584 -c "adding ecjpake_kkpp extension" \
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]9585 -s "found ecjpake kkpp extension" \
9586 -s "skip ecjpake kkpp extension" \
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9587 -s "ciphersuite mismatch: ecjpake not configured" \
Manuel Pégourié-Gonnard55c7f992015-09-16 15:35:27 +0200[diff] [blame]9588 -S "server hello, ecjpake kkpp extension" \
Manuel Pégourié-Gonnard0a1324a2015-09-16 16:01:00 +0200[diff] [blame]9589 -C "found ecjpake_kkpp extension" \
Dave Rodgman737237f2021-06-29 19:07:57 +0100[diff] [blame]9590 -s "SSL - The handshake negotiation failed"
Manuel Pégourié-Gonnarde511b4e2015-09-16 14:11:09 +0200[diff] [blame]9591
Valerio Settif11e05a2022-12-07 15:41:05 +0100[diff] [blame]9592# Note: if the name of this test is changed, then please adjust the corresponding
9593# filtering label in "test_tls1_2_ecjpake_compatibility" (in "all.sh")
Hanno Beckerfa452c42020-08-14 15:42:49 +0100[diff] [blame]9594requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]9595run_test "ECJPAKE: working, TLS" \
9596 "$P_SRV debug_level=3 ecjpake_pw=bla" \
9597 "$P_CLI debug_level=3 ecjpake_pw=bla \
9598 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
Manuel Pégourié-Gonnard0f1660a2015-09-16 22:41:06 +0200[diff] [blame]9599 0 \
Ronald Cron7320e642022-03-08 13:34:49 +0100[diff] [blame]9600 -c "add ciphersuite: c0ff" \
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]9601 -c "adding ecjpake_kkpp extension" \
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]9602 -C "re-using cached ecjpake parameters" \
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]9603 -s "found ecjpake kkpp extension" \
9604 -S "skip ecjpake kkpp extension" \
9605 -S "ciphersuite mismatch: ecjpake not configured" \
Manuel Pégourié-Gonnard55c7f992015-09-16 15:35:27 +0200[diff] [blame]9606 -s "server hello, ecjpake kkpp extension" \
Manuel Pégourié-Gonnard0a1324a2015-09-16 16:01:00 +0200[diff] [blame]9607 -c "found ecjpake_kkpp extension" \
Dave Rodgman737237f2021-06-29 19:07:57 +0100[diff] [blame]9608 -S "SSL - The handshake negotiation failed" \
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]9609 -S "SSL - Verification of the message MAC failed"
9610
Valerio Settid572a822022-11-28 18:27:51 +0100[diff] [blame]9611requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Valerio Settia6b69da2022-11-30 16:44:49 +0100[diff] [blame]9612requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Valerio Setti70e02902022-12-02 16:21:56 +0100[diff] [blame]9613run_test "ECJPAKE: opaque password client+server, working, TLS" \
Valerio Settid572a822022-11-28 18:27:51 +0100[diff] [blame]9614 "$P_SRV debug_level=3 ecjpake_pw=bla ecjpake_pw_opaque=1" \
9615 "$P_CLI debug_level=3 ecjpake_pw=bla ecjpake_pw_opaque=1\
9616 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9617 0 \
9618 -c "add ciphersuite: c0ff" \
9619 -c "adding ecjpake_kkpp extension" \
Valerio Setti661b9bc2022-11-29 17:19:25 +0100[diff] [blame]9620 -c "using opaque password" \
9621 -s "using opaque password" \
Valerio Settid572a822022-11-28 18:27:51 +0100[diff] [blame]9622 -C "re-using cached ecjpake parameters" \
9623 -s "found ecjpake kkpp extension" \
9624 -S "skip ecjpake kkpp extension" \
9625 -S "ciphersuite mismatch: ecjpake not configured" \
9626 -s "server hello, ecjpake kkpp extension" \
9627 -c "found ecjpake_kkpp extension" \
9628 -S "SSL - The handshake negotiation failed" \
9629 -S "SSL - Verification of the message MAC failed"
9630
Valerio Settif11e05a2022-12-07 15:41:05 +0100[diff] [blame]9631# Note: if the name of this test is changed, then please adjust the corresponding
9632# filtering label in "test_tls1_2_ecjpake_compatibility" (in "all.sh")
Valerio Settib287ddf2022-12-01 16:18:12 +0100[diff] [blame]9633requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
9634requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Valerio Setti70e02902022-12-02 16:21:56 +0100[diff] [blame]9635run_test "ECJPAKE: opaque password client only, working, TLS" \
Valerio Settib287ddf2022-12-01 16:18:12 +0100[diff] [blame]9636 "$P_SRV debug_level=3 ecjpake_pw=bla" \
9637 "$P_CLI debug_level=3 ecjpake_pw=bla ecjpake_pw_opaque=1\
9638 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9639 0 \
9640 -c "add ciphersuite: c0ff" \
9641 -c "adding ecjpake_kkpp extension" \
9642 -c "using opaque password" \
9643 -S "using opaque password" \
9644 -C "re-using cached ecjpake parameters" \
9645 -s "found ecjpake kkpp extension" \
9646 -S "skip ecjpake kkpp extension" \
9647 -S "ciphersuite mismatch: ecjpake not configured" \
9648 -s "server hello, ecjpake kkpp extension" \
9649 -c "found ecjpake_kkpp extension" \
9650 -S "SSL - The handshake negotiation failed" \
9651 -S "SSL - Verification of the message MAC failed"
9652
Valerio Settif11e05a2022-12-07 15:41:05 +0100[diff] [blame]9653# Note: if the name of this test is changed, then please adjust the corresponding
9654# filtering label in "test_tls1_2_ecjpake_compatibility" (in "all.sh")
Valerio Settib287ddf2022-12-01 16:18:12 +0100[diff] [blame]9655requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
9656requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Valerio Setti70e02902022-12-02 16:21:56 +0100[diff] [blame]9657run_test "ECJPAKE: opaque password server only, working, TLS" \
Valerio Settib287ddf2022-12-01 16:18:12 +0100[diff] [blame]9658 "$P_SRV debug_level=3 ecjpake_pw=bla ecjpake_pw_opaque=1" \
9659 "$P_CLI debug_level=3 ecjpake_pw=bla\
9660 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9661 0 \
9662 -c "add ciphersuite: c0ff" \
9663 -c "adding ecjpake_kkpp extension" \
9664 -C "using opaque password" \
9665 -s "using opaque password" \
9666 -C "re-using cached ecjpake parameters" \
9667 -s "found ecjpake kkpp extension" \
9668 -S "skip ecjpake kkpp extension" \
9669 -S "ciphersuite mismatch: ecjpake not configured" \
9670 -s "server hello, ecjpake kkpp extension" \
9671 -c "found ecjpake_kkpp extension" \
9672 -S "SSL - The handshake negotiation failed" \
9673 -S "SSL - Verification of the message MAC failed"
9674
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]9675server_needs_more_time 1
Dave Rodgmanbec7caf2021-06-29 19:05:34 +0100[diff] [blame]9676requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]9677run_test "ECJPAKE: password mismatch, TLS" \
9678 "$P_SRV debug_level=3 ecjpake_pw=bla" \
9679 "$P_CLI debug_level=3 ecjpake_pw=bad \
9680 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9681 1 \
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]9682 -C "re-using cached ecjpake parameters" \
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]9683 -s "SSL - Verification of the message MAC failed"
9684
Valerio Settib287ddf2022-12-01 16:18:12 +0100[diff] [blame]9685server_needs_more_time 1
9686requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
9687requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Valerio Settib287ddf2022-12-01 16:18:12 +0100[diff] [blame]9688run_test "ECJPAKE_OPAQUE_PW: opaque password mismatch, TLS" \
9689 "$P_SRV debug_level=3 ecjpake_pw=bla ecjpake_pw_opaque=1" \
9690 "$P_CLI debug_level=3 ecjpake_pw=bad ecjpake_pw_opaque=1 \
9691 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9692 1 \
9693 -c "using opaque password" \
9694 -s "using opaque password" \
9695 -C "re-using cached ecjpake parameters" \
9696 -s "SSL - Verification of the message MAC failed"
9697
Dave Rodgmanbec7caf2021-06-29 19:05:34 +0100[diff] [blame]9698requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]9699run_test "ECJPAKE: working, DTLS" \
9700 "$P_SRV debug_level=3 dtls=1 ecjpake_pw=bla" \
9701 "$P_CLI debug_level=3 dtls=1 ecjpake_pw=bla \
9702 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9703 0 \
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]9704 -c "re-using cached ecjpake parameters" \
9705 -S "SSL - Verification of the message MAC failed"
9706
Dave Rodgmanbec7caf2021-06-29 19:05:34 +0100[diff] [blame]9707requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]9708run_test "ECJPAKE: working, DTLS, no cookie" \
9709 "$P_SRV debug_level=3 dtls=1 ecjpake_pw=bla cookies=0" \
9710 "$P_CLI debug_level=3 dtls=1 ecjpake_pw=bla \
9711 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9712 0 \
9713 -C "re-using cached ecjpake parameters" \
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]9714 -S "SSL - Verification of the message MAC failed"
9715
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]9716server_needs_more_time 1
Dave Rodgmanbec7caf2021-06-29 19:05:34 +0100[diff] [blame]9717requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]9718run_test "ECJPAKE: password mismatch, DTLS" \
9719 "$P_SRV debug_level=3 dtls=1 ecjpake_pw=bla" \
9720 "$P_CLI debug_level=3 dtls=1 ecjpake_pw=bad \
9721 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9722 1 \
Manuel Pégourié-Gonnardd0d8cb32015-09-17 14:16:30 +0200[diff] [blame]9723 -c "re-using cached ecjpake parameters" \
Manuel Pégourié-Gonnard921f2d02015-09-16 22:52:18 +0200[diff] [blame]9724 -s "SSL - Verification of the message MAC failed"
Manuel Pégourié-Gonnardbf57be62015-09-16 15:04:01 +0200[diff] [blame]9725
Manuel Pégourié-Gonnardca700b22015-10-20 14:47:00 +0200[diff] [blame]9726# for tests with configs/config-thread.h
Dave Rodgmanbec7caf2021-06-29 19:05:34 +0100[diff] [blame]9727requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
Manuel Pégourié-Gonnardca700b22015-10-20 14:47:00 +0200[diff] [blame]9728run_test "ECJPAKE: working, DTLS, nolog" \
9729 "$P_SRV dtls=1 ecjpake_pw=bla" \
9730 "$P_CLI dtls=1 ecjpake_pw=bla \
9731 force_ciphersuite=TLS-ECJPAKE-WITH-AES-128-CCM-8" \
9732 0
9733
Manuel Pégourié-Gonnard4cc8c632015-07-23 12:24:03 +0200[diff] [blame]9734# Test for ClientHello without extensions
9735
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]9736# Without extensions, ECC is impossible (no curve negotiation).
9737requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnardd55bc202015-08-04 16:22:30 +0200[diff] [blame]9738requires_gnutls
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]9739run_test "ClientHello without extensions: RSA" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]9740 "$P_SRV force_version=tls12 debug_level=3" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]9741 "$G_CLI --priority=NORMAL:%NO_EXTENSIONS:%DISABLE_SAFE_RENEGOTIATION localhost" \
Gilles Peskine5d2511c2017-05-12 13:16:40 +0200[diff] [blame]9742 0 \
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]9743 -s "Ciphersuite is .*-RSA-WITH-.*" \
9744 -S "Ciphersuite is .*-EC.*" \
9745 -s "dumping 'client hello extensions' (0 bytes)"
9746
Gilles Peskinef2876912024-05-13 21:18:41 +0200[diff] [blame]9747requires_config_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED
Gilles Peskine80e54a22024-04-29 17:42:52 +0200[diff] [blame]9748requires_gnutls
9749run_test "ClientHello without extensions: PSK" \
9750 "$P_SRV force_version=tls12 debug_level=3 psk=73776f726466697368" \
9751 "$G_CLI --priority=NORMAL:+PSK:-RSA:-DHE-RSA:%NO_EXTENSIONS:%DISABLE_SAFE_RENEGOTIATION --pskusername=Client_identity --pskkey=73776f726466697368 localhost" \
9752 0 \
9753 -s "Ciphersuite is .*-PSK-.*" \
9754 -S "Ciphersuite is .*-EC.*" \
Gilles Peskine5d2511c2017-05-12 13:16:40 +0200[diff] [blame]9755 -s "dumping 'client hello extensions' (0 bytes)"
9756
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]9757# Tests for mbedtls_ssl_get_bytes_avail()
Manuel Pégourié-Gonnard95c0a632014-06-11 18:32:36 +0200[diff] [blame]9758
Gilles Peskined2d90af2022-04-06 23:35:56 +0200[diff] [blame]9759# The server first reads buffer_size-1 bytes, then reads the remainder.
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]9760requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]9761run_test "mbedtls_ssl_get_bytes_avail: no extra data" \
Gilles Peskined2d90af2022-04-06 23:35:56 +0200[diff] [blame]9762 "$P_SRV buffer_size=100" \
Manuel Pégourié-Gonnard95c0a632014-06-11 18:32:36 +0200[diff] [blame]9763 "$P_CLI request_size=100" \
9764 0 \
9765 -s "Read from client: 100 bytes read$"
9766
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]9767requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Gilles Peskined2d90af2022-04-06 23:35:56 +0200[diff] [blame]9768run_test "mbedtls_ssl_get_bytes_avail: extra data (+1)" \
9769 "$P_SRV buffer_size=100" \
9770 "$P_CLI request_size=101" \
Manuel Pégourié-Gonnard95c0a632014-06-11 18:32:36 +0200[diff] [blame]9771 0 \
Gilles Peskined2d90af2022-04-06 23:35:56 +0200[diff] [blame]9772 -s "Read from client: 101 bytes read (100 + 1)"
9773
9774requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
9775requires_max_content_len 200
9776run_test "mbedtls_ssl_get_bytes_avail: extra data (*2)" \
9777 "$P_SRV buffer_size=100" \
9778 "$P_CLI request_size=200" \
9779 0 \
9780 -s "Read from client: 200 bytes read (100 + 100)"
9781
9782requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
9783run_test "mbedtls_ssl_get_bytes_avail: extra data (max)" \
Waleed Elmelegybae705c2024-01-01 14:21:21 +0000[diff] [blame]9784 "$P_SRV buffer_size=100 force_version=tls12" \
Gilles Peskined2d90af2022-04-06 23:35:56 +0200[diff] [blame]9785 "$P_CLI request_size=$MAX_CONTENT_LEN" \
9786 0 \
9787 -s "Read from client: $MAX_CONTENT_LEN bytes read (100 + $((MAX_CONTENT_LEN - 100)))"
Manuel Pégourié-Gonnard90805a82014-06-11 14:06:01 +0200[diff] [blame]9788
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9789# Tests for small client packets
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]9790
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9791run_test "Small client packet TLS 1.2 BlockCipher" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9792 "$P_SRV force_version=tls12" \
9793 "$P_CLI request_size=1 \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]9794 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
9795 0 \
9796 -s "Read from client: 1 bytes read"
9797
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9798run_test "Small client packet TLS 1.2 BlockCipher, without EtM" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9799 "$P_SRV force_version=tls12" \
9800 "$P_CLI request_size=1 \
Hanno Becker909f9a32017-11-21 17:10:12 +0000[diff] [blame]9801 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
Manuel Pégourié-Gonnard169dd6a2014-11-04 16:15:39 +0100[diff] [blame]9802 0 \
9803 -s "Read from client: 1 bytes read"
9804
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9805run_test "Small client packet TLS 1.2 BlockCipher larger MAC" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9806 "$P_SRV force_version=tls12" \
9807 "$P_CLI request_size=1 \
Manuel Pégourié-Gonnardc82ee352015-01-07 16:35:25 +0100[diff] [blame]9808 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]9809 0 \
9810 -s "Read from client: 1 bytes read"
9811
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9812run_test "Small client packet TLS 1.2 AEAD" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9813 "$P_SRV force_version=tls12" \
9814 "$P_CLI request_size=1 \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]9815 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
9816 0 \
9817 -s "Read from client: 1 bytes read"
9818
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9819run_test "Small client packet TLS 1.2 AEAD shorter tag" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9820 "$P_SRV force_version=tls12" \
9821 "$P_CLI request_size=1 \
Manuel Pégourié-Gonnardee415032014-06-18 15:08:56 +0200[diff] [blame]9822 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
9823 0 \
9824 -s "Read from client: 1 bytes read"
9825
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]9826requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9827run_test "Small client packet TLS 1.3 AEAD" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]9828 "$P_SRV" \
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9829 "$P_CLI request_size=1 \
9830 force_ciphersuite=TLS1-3-AES-128-CCM-SHA256" \
9831 0 \
9832 -s "Read from client: 1 bytes read"
9833
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]9834requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9835run_test "Small client packet TLS 1.3 AEAD shorter tag" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]9836 "$P_SRV" \
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9837 "$P_CLI request_size=1 \
9838 force_ciphersuite=TLS1-3-AES-128-CCM-8-SHA256" \
9839 0 \
9840 -s "Read from client: 1 bytes read"
9841
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9842# Tests for small client packets in DTLS
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]9843
9844requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9845run_test "Small client packet DTLS 1.2" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9846 "$P_SRV dtls=1 force_version=dtls12" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]9847 "$P_CLI dtls=1 request_size=1 \
9848 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
9849 0 \
9850 -s "Read from client: 1 bytes read"
9851
9852requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9853run_test "Small client packet DTLS 1.2, without EtM" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9854 "$P_SRV dtls=1 force_version=dtls12 etm=0" \
Hanno Beckere2148042017-11-10 08:59:18 +0000[diff] [blame]9855 "$P_CLI dtls=1 request_size=1 \
9856 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
9857 0 \
9858 -s "Read from client: 1 bytes read"
9859
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9860# Tests for small server packets
9861
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9862run_test "Small server packet TLS 1.2 BlockCipher" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9863 "$P_SRV response_size=1 force_version=tls12" \
9864 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9865 0 \
9866 -c "Read from server: 1 bytes read"
9867
9868run_test "Small server packet TLS 1.2 BlockCipher, without EtM" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9869 "$P_SRV response_size=1 force_version=tls12" \
9870 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA etm=0" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9871 0 \
9872 -c "Read from server: 1 bytes read"
9873
9874run_test "Small server packet TLS 1.2 BlockCipher larger MAC" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9875 "$P_SRV response_size=1 force_version=tls12" \
9876 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9877 0 \
9878 -c "Read from server: 1 bytes read"
9879
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9880run_test "Small server packet TLS 1.2 AEAD" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9881 "$P_SRV response_size=1 force_version=tls12" \
9882 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9883 0 \
9884 -c "Read from server: 1 bytes read"
9885
9886run_test "Small server packet TLS 1.2 AEAD shorter tag" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9887 "$P_SRV response_size=1 force_version=tls12" \
9888 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9889 0 \
9890 -c "Read from server: 1 bytes read"
9891
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]9892requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9893run_test "Small server packet TLS 1.3 AEAD" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]9894 "$P_SRV response_size=1" \
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9895 "$P_CLI force_ciphersuite=TLS1-3-AES-128-CCM-SHA256" \
9896 0 \
9897 -c "Read from server: 1 bytes read"
9898
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]9899requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9900run_test "Small server packet TLS 1.3 AEAD shorter tag" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]9901 "$P_SRV response_size=1" \
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9902 "$P_CLI force_ciphersuite=TLS1-3-AES-128-CCM-8-SHA256" \
9903 0 \
9904 -c "Read from server: 1 bytes read"
9905
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9906# Tests for small server packets in DTLS
9907
9908requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9909run_test "Small server packet DTLS 1.2" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9910 "$P_SRV dtls=1 response_size=1 force_version=dtls12" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9911 "$P_CLI dtls=1 \
9912 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
9913 0 \
9914 -c "Read from server: 1 bytes read"
9915
9916requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
9917run_test "Small server packet DTLS 1.2, without EtM" \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]9918 "$P_SRV dtls=1 response_size=1 force_version=dtls12 etm=0" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9919 "$P_CLI dtls=1 \
9920 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
9921 0 \
9922 -c "Read from server: 1 bytes read"
9923
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]9924# Test for large client packets
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]9925
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]9926# How many fragments do we expect to write $1 bytes?
9927fragments_for_write() {
9928 echo "$(( ( $1 + $MAX_OUT_LEN - 1 ) / $MAX_OUT_LEN ))"
9929}
9930
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]9931run_test "Large client packet TLS 1.2 BlockCipher" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9932 "$P_SRV force_version=tls12" \
9933 "$P_CLI request_size=16384 \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]9934 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
9935 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]9936 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
9937 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]9938
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]9939run_test "Large client packet TLS 1.2 BlockCipher, without EtM" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9940 "$P_SRV force_version=tls12" \
9941 "$P_CLI request_size=16384 etm=0 \
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]9942 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
9943 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]9944 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Hanno Becker278fc7a2017-11-10 09:16:28 +0000[diff] [blame]9945
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]9946run_test "Large client packet TLS 1.2 BlockCipher larger MAC" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9947 "$P_SRV force_version=tls12" \
9948 "$P_CLI request_size=16384 \
Manuel Pégourié-Gonnardc82ee352015-01-07 16:35:25 +0100[diff] [blame]9949 force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]9950 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]9951 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
9952 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]9953
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]9954run_test "Large client packet TLS 1.2 AEAD" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9955 "$P_SRV force_version=tls12" \
9956 "$P_CLI request_size=16384 \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]9957 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
9958 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]9959 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
9960 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]9961
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]9962run_test "Large client packet TLS 1.2 AEAD shorter tag" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9963 "$P_SRV force_version=tls12" \
9964 "$P_CLI request_size=16384 \
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]9965 force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
9966 0 \
Angus Grattonc4dd0732018-04-11 16:28:39 +1000[diff] [blame]9967 -c "16384 bytes written in $(fragments_for_write 16384) fragments" \
9968 -s "Read from client: $MAX_CONTENT_LEN bytes read"
Manuel Pégourié-Gonnard8920f692014-06-18 22:05:08 +0200[diff] [blame]9969
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]9970requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9971run_test "Large client packet TLS 1.3 AEAD" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]9972 "$P_SRV" \
Waleed Elmelegyea031832023-12-29 15:36:51 +0000[diff] [blame]9973 "$P_CLI request_size=16383 \
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9974 force_ciphersuite=TLS1-3-AES-128-CCM-SHA256" \
9975 0 \
Waleed Elmelegyea031832023-12-29 15:36:51 +0000[diff] [blame]9976 -c "16383 bytes written in $(fragments_for_write 16383) fragments" \
9977 -s "Read from client: 16383 bytes read"
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9978
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]9979requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9980run_test "Large client packet TLS 1.3 AEAD shorter tag" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]9981 "$P_SRV" \
Waleed Elmelegyea031832023-12-29 15:36:51 +0000[diff] [blame]9982 "$P_CLI request_size=16383 \
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9983 force_ciphersuite=TLS1-3-AES-128-CCM-8-SHA256" \
9984 0 \
Waleed Elmelegyea031832023-12-29 15:36:51 +0000[diff] [blame]9985 -c "16383 bytes written in $(fragments_for_write 16383) fragments" \
9986 -s "Read from client: 16383 bytes read"
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]9987
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]9988# The tests below fail when the server's OUT_CONTENT_LEN is less than 16384.
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]9989run_test "Large server packet TLS 1.2 BlockCipher" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9990 "$P_SRV response_size=16384 force_version=tls12" \
9991 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]9992 0 \
9993 -c "Read from server: 16384 bytes read"
9994
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9995run_test "Large server packet TLS 1.2 BlockCipher, without EtM" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]9996 "$P_SRV response_size=16384 force_version=tls12" \
9997 "$P_CLI etm=0 force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]9998 0 \
9999 -s "16384 bytes written in 1 fragments" \
10000 -c "Read from server: 16384 bytes read"
10001
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]10002run_test "Large server packet TLS 1.2 BlockCipher larger MAC" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]10003 "$P_SRV response_size=16384 force_version=tls12" \
10004 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-256-CBC-SHA384" \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]10005 0 \
10006 -c "Read from server: 16384 bytes read"
10007
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]10008run_test "Large server packet TLS 1.2 BlockCipher, without EtM, truncated MAC" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]10009 "$P_SRV response_size=16384 trunc_hmac=1 force_version=tls12" \
10010 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-256-CBC-SHA trunc_hmac=1 etm=0" \
Andrzej Kurekc19fc552018-06-19 09:37:30 -0400[diff] [blame]10011 0 \
10012 -s "16384 bytes written in 1 fragments" \
10013 -c "Read from server: 16384 bytes read"
10014
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]10015run_test "Large server packet TLS 1.2 AEAD" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]10016 "$P_SRV response_size=16384 force_version=tls12" \
10017 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-256-CCM" \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]10018 0 \
10019 -c "Read from server: 16384 bytes read"
10020
10021run_test "Large server packet TLS 1.2 AEAD shorter tag" \
Ronald Cronf3b425b2022-03-17 16:45:09 +0100[diff] [blame]10022 "$P_SRV response_size=16384 force_version=tls12" \
10023 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-256-CCM-8" \
Andrzej Kurek30e731d2017-10-12 13:50:29 +0200[diff] [blame]10024 0 \
10025 -c "Read from server: 16384 bytes read"
10026
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]10027requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10028run_test "Large server packet TLS 1.3 AEAD" \
Waleed Elmelegyea031832023-12-29 15:36:51 +0000[diff] [blame]10029 "$P_SRV response_size=16383" \
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10030 "$P_CLI force_ciphersuite=TLS1-3-AES-128-CCM-SHA256" \
10031 0 \
Waleed Elmelegyea031832023-12-29 15:36:51 +0000[diff] [blame]10032 -c "Read from server: 16383 bytes read"
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10033
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]10034requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10035run_test "Large server packet TLS 1.3 AEAD shorter tag" \
Waleed Elmelegyea031832023-12-29 15:36:51 +0000[diff] [blame]10036 "$P_SRV response_size=16383" \
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10037 "$P_CLI force_ciphersuite=TLS1-3-AES-128-CCM-8-SHA256" \
10038 0 \
Waleed Elmelegyea031832023-12-29 15:36:51 +0000[diff] [blame]10039 -c "Read from server: 16383 bytes read"
Ronald Crona4417c12022-06-23 16:06:28 +0200[diff] [blame]10040
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10041# Tests for restartable ECC
10042
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10043# Force the use of a curve that supports restartable ECC (secp256r1).
10044
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10045requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10046requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10047run_test "EC restart: TLS, default" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10048 "$P_SRV groups=secp256r1 auth_mode=required" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10049 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10050 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10051 debug_level=1" \
10052 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10053 -C "x509_verify_cert.*4b00" \
10054 -C "mbedtls_pk_verify.*4b00" \
10055 -C "mbedtls_ecdh_make_public.*4b00" \
10056 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10057
10058requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10059requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10060run_test "EC restart: TLS, max_ops=0" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10061 "$P_SRV groups=secp256r1 auth_mode=required" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10062 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10063 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10064 debug_level=1 ec_max_ops=0" \
10065 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10066 -C "x509_verify_cert.*4b00" \
10067 -C "mbedtls_pk_verify.*4b00" \
10068 -C "mbedtls_ecdh_make_public.*4b00" \
10069 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10070
10071requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10072requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10073run_test "EC restart: TLS, max_ops=65535" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10074 "$P_SRV groups=secp256r1 auth_mode=required" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10075 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10076 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10077 debug_level=1 ec_max_ops=65535" \
10078 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10079 -C "x509_verify_cert.*4b00" \
10080 -C "mbedtls_pk_verify.*4b00" \
10081 -C "mbedtls_ecdh_make_public.*4b00" \
10082 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10083
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10084# With USE_PSA disabled we expect full restartable behaviour.
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10085requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10086requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10087requires_config_disabled MBEDTLS_USE_PSA_CRYPTO
10088run_test "EC restart: TLS, max_ops=1000 (no USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10089 "$P_SRV groups=secp256r1 auth_mode=required" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10090 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10091 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10092 debug_level=1 ec_max_ops=1000" \
10093 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10094 -c "x509_verify_cert.*4b00" \
10095 -c "mbedtls_pk_verify.*4b00" \
10096 -c "mbedtls_ecdh_make_public.*4b00" \
10097 -c "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10098
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10099# With USE_PSA enabled we expect only partial restartable behaviour:
10100# everything except ECDH (where TLS calls PSA directly).
10101requires_config_enabled MBEDTLS_ECP_RESTARTABLE
10102requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10103requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
10104run_test "EC restart: TLS, max_ops=1000 (USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10105 "$P_SRV groups=secp256r1 auth_mode=required" \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10106 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10107 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10108 debug_level=1 ec_max_ops=1000" \
10109 0 \
10110 -c "x509_verify_cert.*4b00" \
10111 -c "mbedtls_pk_verify.*4b00" \
10112 -C "mbedtls_ecdh_make_public.*4b00" \
10113 -c "mbedtls_pk_sign.*4b00"
10114
10115# This works the same with & without USE_PSA as we never get to ECDH:
10116# we abort as soon as we determined the cert is bad.
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10117requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10118requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10119run_test "EC restart: TLS, max_ops=1000, badsign" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10120 "$P_SRV groups=secp256r1 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10121 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
10122 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10123 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10124 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10125 debug_level=1 ec_max_ops=1000" \
10126 1 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10127 -c "x509_verify_cert.*4b00" \
10128 -C "mbedtls_pk_verify.*4b00" \
10129 -C "mbedtls_ecdh_make_public.*4b00" \
10130 -C "mbedtls_pk_sign.*4b00" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10131 -c "! The certificate is not correctly signed by the trusted CA" \
10132 -c "! mbedtls_ssl_handshake returned" \
10133 -c "X509 - Certificate verification failed"
10134
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10135# With USE_PSA disabled we expect full restartable behaviour.
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10136requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10137requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10138requires_config_disabled MBEDTLS_USE_PSA_CRYPTO
10139run_test "EC restart: TLS, max_ops=1000, auth_mode=optional badsign (no USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10140 "$P_SRV groups=secp256r1 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10141 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
10142 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10143 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10144 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10145 debug_level=1 ec_max_ops=1000 auth_mode=optional" \
10146 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10147 -c "x509_verify_cert.*4b00" \
10148 -c "mbedtls_pk_verify.*4b00" \
10149 -c "mbedtls_ecdh_make_public.*4b00" \
10150 -c "mbedtls_pk_sign.*4b00" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10151 -c "! The certificate is not correctly signed by the trusted CA" \
10152 -C "! mbedtls_ssl_handshake returned" \
10153 -C "X509 - Certificate verification failed"
10154
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10155# With USE_PSA enabled we expect only partial restartable behaviour:
10156# everything except ECDH (where TLS calls PSA directly).
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10157requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10158requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10159requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
10160run_test "EC restart: TLS, max_ops=1000, auth_mode=optional badsign (USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10161 "$P_SRV groups=secp256r1 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10162 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
10163 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10164 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10165 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10166 debug_level=1 ec_max_ops=1000 auth_mode=optional" \
10167 0 \
10168 -c "x509_verify_cert.*4b00" \
10169 -c "mbedtls_pk_verify.*4b00" \
10170 -C "mbedtls_ecdh_make_public.*4b00" \
10171 -c "mbedtls_pk_sign.*4b00" \
10172 -c "! The certificate is not correctly signed by the trusted CA" \
10173 -C "! mbedtls_ssl_handshake returned" \
10174 -C "X509 - Certificate verification failed"
10175
10176# With USE_PSA disabled we expect full restartable behaviour.
10177requires_config_enabled MBEDTLS_ECP_RESTARTABLE
10178requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10179requires_config_disabled MBEDTLS_USE_PSA_CRYPTO
10180run_test "EC restart: TLS, max_ops=1000, auth_mode=none badsign (no USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10181 "$P_SRV groups=secp256r1 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10182 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
10183 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10184 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10185 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10186 debug_level=1 ec_max_ops=1000 auth_mode=none" \
10187 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10188 -C "x509_verify_cert.*4b00" \
10189 -c "mbedtls_pk_verify.*4b00" \
10190 -c "mbedtls_ecdh_make_public.*4b00" \
10191 -c "mbedtls_pk_sign.*4b00" \
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10192 -C "! The certificate is not correctly signed by the trusted CA" \
10193 -C "! mbedtls_ssl_handshake returned" \
10194 -C "X509 - Certificate verification failed"
10195
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10196# With USE_PSA enabled we expect only partial restartable behaviour:
10197# everything except ECDH (where TLS calls PSA directly).
Manuel Pégourié-Gonnard3bf49c42017-08-15 13:47:06 +0200[diff] [blame]10198requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10199requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10200requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
10201run_test "EC restart: TLS, max_ops=1000, auth_mode=none badsign (USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10202 "$P_SRV groups=secp256r1 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10203 crt_file=$DATA_FILES_PATH/server5-badsign.crt \
10204 key_file=$DATA_FILES_PATH/server5.key" \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10205 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10206 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10207 debug_level=1 ec_max_ops=1000 auth_mode=none" \
10208 0 \
10209 -C "x509_verify_cert.*4b00" \
10210 -c "mbedtls_pk_verify.*4b00" \
10211 -C "mbedtls_ecdh_make_public.*4b00" \
10212 -c "mbedtls_pk_sign.*4b00" \
10213 -C "! The certificate is not correctly signed by the trusted CA" \
10214 -C "! mbedtls_ssl_handshake returned" \
10215 -C "X509 - Certificate verification failed"
10216
10217# With USE_PSA disabled we expect full restartable behaviour.
10218requires_config_enabled MBEDTLS_ECP_RESTARTABLE
10219requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10220requires_config_disabled MBEDTLS_USE_PSA_CRYPTO
10221run_test "EC restart: DTLS, max_ops=1000 (no USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10222 "$P_SRV groups=secp256r1 auth_mode=required dtls=1" \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10223 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10224 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10225 dtls=1 debug_level=1 ec_max_ops=1000" \
10226 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10227 -c "x509_verify_cert.*4b00" \
10228 -c "mbedtls_pk_verify.*4b00" \
10229 -c "mbedtls_ecdh_make_public.*4b00" \
10230 -c "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard2350b4e2017-05-16 09:26:48 +0200[diff] [blame]10231
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10232# With USE_PSA enabled we expect only partial restartable behaviour:
10233# everything except ECDH (where TLS calls PSA directly).
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]10234requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10235requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10236requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
10237run_test "EC restart: DTLS, max_ops=1000 (USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10238 "$P_SRV groups=secp256r1 auth_mode=required dtls=1" \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10239 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10240 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10241 dtls=1 debug_level=1 ec_max_ops=1000" \
10242 0 \
10243 -c "x509_verify_cert.*4b00" \
10244 -c "mbedtls_pk_verify.*4b00" \
10245 -C "mbedtls_ecdh_make_public.*4b00" \
10246 -c "mbedtls_pk_sign.*4b00"
10247
10248# With USE_PSA disabled we expect full restartable behaviour.
10249requires_config_enabled MBEDTLS_ECP_RESTARTABLE
10250requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10251requires_config_disabled MBEDTLS_USE_PSA_CRYPTO
10252run_test "EC restart: TLS, max_ops=1000 no client auth (no USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10253 "$P_SRV groups=secp256r1" \
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]10254 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
10255 debug_level=1 ec_max_ops=1000" \
10256 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10257 -c "x509_verify_cert.*4b00" \
10258 -c "mbedtls_pk_verify.*4b00" \
10259 -c "mbedtls_ecdh_make_public.*4b00" \
10260 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]10261
Manuel Pégourié-Gonnard2b7ad642022-12-06 10:42:44 +0100[diff] [blame]10262
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10263# With USE_PSA enabled we expect only partial restartable behaviour:
10264# everything except ECDH (where TLS calls PSA directly).
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]10265requires_config_enabled MBEDTLS_ECP_RESTARTABLE
Gilles Peskine4a02cef2021-06-03 11:12:40 +0200[diff] [blame]10266requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10267requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
10268run_test "EC restart: TLS, max_ops=1000 no client auth (USE_PSA)" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10269 "$P_SRV groups=secp256r1" \
Manuel Pégourié-Gonnard55a188b2022-12-06 12:00:33 +0100[diff] [blame]10270 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
10271 debug_level=1 ec_max_ops=1000" \
10272 0 \
10273 -c "x509_verify_cert.*4b00" \
10274 -c "mbedtls_pk_verify.*4b00" \
10275 -C "mbedtls_ecdh_make_public.*4b00" \
10276 -C "mbedtls_pk_sign.*4b00"
10277
Manuel Pégourié-Gonnard2b7ad642022-12-06 10:42:44 +0100[diff] [blame]10278# Restartable is only for ECDHE-ECDSA, with another ciphersuite we expect no
10279# restartable behaviour at all (not even client auth).
10280# This is the same as "EC restart: TLS, max_ops=1000" except with ECDHE-RSA,
10281# and all 4 assertions negated.
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]10282requires_config_enabled MBEDTLS_ECP_RESTARTABLE
10283requires_config_enabled MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard2b7ad642022-12-06 10:42:44 +0100[diff] [blame]10284run_test "EC restart: TLS, max_ops=1000, ECDHE-RSA" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]10285 "$P_SRV groups=secp256r1 auth_mode=required" \
Manuel Pégourié-Gonnard2b7ad642022-12-06 10:42:44 +0100[diff] [blame]10286 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-GCM-SHA256 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10287 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
Manuel Pégourié-Gonnard2b7ad642022-12-06 10:42:44 +0100[diff] [blame]10288 debug_level=1 ec_max_ops=1000" \
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]10289 0 \
Manuel Pégourié-Gonnardb5d668a2018-06-13 11:22:01 +0200[diff] [blame]10290 -C "x509_verify_cert.*4b00" \
10291 -C "mbedtls_pk_verify.*4b00" \
10292 -C "mbedtls_ecdh_make_public.*4b00" \
10293 -C "mbedtls_pk_sign.*4b00"
Manuel Pégourié-Gonnard32033da2017-05-18 12:49:27 +0200[diff] [blame]10294
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10295# Tests of asynchronous private key support in SSL
10296
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10297requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10298run_test "SSL async private: sign, delay=0" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10299 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10300 async_operations=s async_private_delay1=0 async_private_delay2=0" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10301 "$P_CLI" \
10302 0 \
10303 -s "Async sign callback: using key slot " \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10304 -s "Async resume (slot [0-9]): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10305
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10306requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10307run_test "SSL async private: sign, delay=1" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10308 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10309 async_operations=s async_private_delay1=1 async_private_delay2=1" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10310 "$P_CLI" \
10311 0 \
10312 -s "Async sign callback: using key slot " \
10313 -s "Async resume (slot [0-9]): call 0 more times." \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10314 -s "Async resume (slot [0-9]): sign done, status=0"
10315
Gilles Peskine12d0cc12018-04-26 15:06:56 +0200[diff] [blame]10316requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
10317run_test "SSL async private: sign, delay=2" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10318 "$P_SRV force_version=tls12 \
Gilles Peskine12d0cc12018-04-26 15:06:56 +0200[diff] [blame]10319 async_operations=s async_private_delay1=2 async_private_delay2=2" \
10320 "$P_CLI" \
10321 0 \
10322 -s "Async sign callback: using key slot " \
10323 -U "Async sign callback: using key slot " \
10324 -s "Async resume (slot [0-9]): call 1 more times." \
10325 -s "Async resume (slot [0-9]): call 0 more times." \
10326 -s "Async resume (slot [0-9]): sign done, status=0"
10327
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10328requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Hanno Beckerc5722d12020-10-09 11:10:42 +0100[diff] [blame]10329requires_config_disabled MBEDTLS_X509_REMOVE_INFO
Gilles Peskine807d74a2018-04-30 10:30:49 +0200[diff] [blame]10330run_test "SSL async private: sign, SNI" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10331 "$P_SRV force_version=tls12 debug_level=3 \
Gilles Peskine807d74a2018-04-30 10:30:49 +0200[diff] [blame]10332 async_operations=s async_private_delay1=0 async_private_delay2=0 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10333 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
10334 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
Gilles Peskine807d74a2018-04-30 10:30:49 +0200[diff] [blame]10335 "$P_CLI server_name=polarssl.example" \
10336 0 \
10337 -s "Async sign callback: using key slot " \
10338 -s "Async resume (slot [0-9]): sign done, status=0" \
10339 -s "parse ServerName extension" \
10340 -c "issuer name *: C=NL, O=PolarSSL, CN=PolarSSL Test CA" \
10341 -c "subject name *: C=NL, O=PolarSSL, CN=polarssl.example"
10342
10343requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10344run_test "SSL async private: decrypt, delay=0" \
10345 "$P_SRV \
10346 async_operations=d async_private_delay1=0 async_private_delay2=0" \
10347 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
10348 0 \
10349 -s "Async decrypt callback: using key slot " \
10350 -s "Async resume (slot [0-9]): decrypt done, status=0"
10351
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10352requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10353run_test "SSL async private: decrypt, delay=1" \
10354 "$P_SRV \
10355 async_operations=d async_private_delay1=1 async_private_delay2=1" \
10356 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
10357 0 \
10358 -s "Async decrypt callback: using key slot " \
10359 -s "Async resume (slot [0-9]): call 0 more times." \
10360 -s "Async resume (slot [0-9]): decrypt done, status=0"
10361
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10362requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10363run_test "SSL async private: decrypt RSA-PSK, delay=0" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]10364 "$P_SRV psk=73776f726466697368 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10365 async_operations=d async_private_delay1=0 async_private_delay2=0" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]10366 "$P_CLI psk=73776f726466697368 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10367 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA256" \
10368 0 \
10369 -s "Async decrypt callback: using key slot " \
10370 -s "Async resume (slot [0-9]): decrypt done, status=0"
10371
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10372requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10373run_test "SSL async private: decrypt RSA-PSK, delay=1" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]10374 "$P_SRV psk=73776f726466697368 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10375 async_operations=d async_private_delay1=1 async_private_delay2=1" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]10376 "$P_CLI psk=73776f726466697368 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10377 force_ciphersuite=TLS-RSA-PSK-WITH-AES-128-CBC-SHA256" \
10378 0 \
10379 -s "Async decrypt callback: using key slot " \
10380 -s "Async resume (slot [0-9]): call 0 more times." \
10381 -s "Async resume (slot [0-9]): decrypt done, status=0"
10382
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10383requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10384run_test "SSL async private: sign callback not present" \
10385 "$P_SRV \
10386 async_operations=d async_private_delay1=1 async_private_delay2=1" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10387 "$P_CLI force_version=tls12; [ \$? -eq 1 ] &&
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10388 $P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
10389 0 \
10390 -S "Async sign callback" \
10391 -s "! mbedtls_ssl_handshake returned" \
10392 -s "The own private key or pre-shared key is not set, but needed" \
10393 -s "Async resume (slot [0-9]): decrypt done, status=0" \
10394 -s "Successful connection"
10395
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10396requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10397run_test "SSL async private: decrypt callback not present" \
10398 "$P_SRV debug_level=1 \
10399 async_operations=s async_private_delay1=1 async_private_delay2=1" \
10400 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA;
Ronald Cronc5649382023-04-04 15:33:42 +0200[diff] [blame]10401 [ \$? -eq 1 ] && $P_CLI force_version=tls12" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10402 0 \
10403 -S "Async decrypt callback" \
10404 -s "! mbedtls_ssl_handshake returned" \
10405 -s "got no RSA private key" \
10406 -s "Async resume (slot [0-9]): sign done, status=0" \
10407 -s "Successful connection"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10408
10409# key1: ECDSA, key2: RSA; use key1 from slot 0
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10410requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10411run_test "SSL async private: slot 0 used with key1" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10412 "$P_SRV \
10413 async_operations=s async_private_delay1=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10414 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
10415 key_file2=$DATA_FILES_PATH/server2.key crt_file2=$DATA_FILES_PATH/server2.crt" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10416 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
10417 0 \
10418 -s "Async sign callback: using key slot 0," \
10419 -s "Async resume (slot 0): call 0 more times." \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10420 -s "Async resume (slot 0): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10421
10422# key1: ECDSA, key2: RSA; use key2 from slot 0
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10423requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10424run_test "SSL async private: slot 0 used with key2" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10425 "$P_SRV \
10426 async_operations=s async_private_delay2=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10427 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
10428 key_file2=$DATA_FILES_PATH/server2.key crt_file2=$DATA_FILES_PATH/server2.crt" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10429 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
10430 0 \
10431 -s "Async sign callback: using key slot 0," \
10432 -s "Async resume (slot 0): call 0 more times." \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10433 -s "Async resume (slot 0): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10434
10435# key1: ECDSA, key2: RSA; use key2 from slot 1
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10436requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinead28bf02018-04-26 00:19:16 +0200[diff] [blame]10437run_test "SSL async private: slot 1 used with key2" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10438 "$P_SRV \
Gilles Peskine168dae82018-04-25 23:35:42 +0200[diff] [blame]10439 async_operations=s async_private_delay1=1 async_private_delay2=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10440 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
10441 key_file2=$DATA_FILES_PATH/server2.key crt_file2=$DATA_FILES_PATH/server2.crt" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10442 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
10443 0 \
10444 -s "Async sign callback: using key slot 1," \
10445 -s "Async resume (slot 1): call 0 more times." \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10446 -s "Async resume (slot 1): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10447
10448# key1: ECDSA, key2: RSA; use key2 directly
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10449requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10450run_test "SSL async private: fall back to transparent key" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10451 "$P_SRV \
10452 async_operations=s async_private_delay1=1 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10453 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
10454 key_file2=$DATA_FILES_PATH/server2.key crt_file2=$DATA_FILES_PATH/server2.crt " \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10455 "$P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
10456 0 \
10457 -s "Async sign callback: no key matches this certificate."
10458
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10459requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]10460run_test "SSL async private: sign, error in start" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10461 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10462 async_operations=s async_private_delay1=1 async_private_delay2=1 \
10463 async_private_error=1" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10464 "$P_CLI" \
10465 1 \
10466 -s "Async sign callback: injected error" \
10467 -S "Async resume" \
Gilles Peskine37289cd2018-04-27 11:50:14 +0200[diff] [blame]10468 -S "Async cancel" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10469 -s "! mbedtls_ssl_handshake returned"
10470
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10471requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]10472run_test "SSL async private: sign, cancel after start" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10473 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10474 async_operations=s async_private_delay1=1 async_private_delay2=1 \
10475 async_private_error=2" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10476 "$P_CLI" \
10477 1 \
10478 -s "Async sign callback: using key slot " \
10479 -S "Async resume" \
10480 -s "Async cancel"
10481
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10482requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]10483run_test "SSL async private: sign, error in resume" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10484 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10485 async_operations=s async_private_delay1=1 async_private_delay2=1 \
10486 async_private_error=3" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10487 "$P_CLI" \
10488 1 \
10489 -s "Async sign callback: using key slot " \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10490 -s "Async resume callback: sign done but injected error" \
Gilles Peskine37289cd2018-04-27 11:50:14 +0200[diff] [blame]10491 -S "Async cancel" \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10492 -s "! mbedtls_ssl_handshake returned"
10493
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10494requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]10495run_test "SSL async private: decrypt, error in start" \
10496 "$P_SRV \
10497 async_operations=d async_private_delay1=1 async_private_delay2=1 \
10498 async_private_error=1" \
10499 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
10500 1 \
10501 -s "Async decrypt callback: injected error" \
10502 -S "Async resume" \
10503 -S "Async cancel" \
10504 -s "! mbedtls_ssl_handshake returned"
10505
10506requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
10507run_test "SSL async private: decrypt, cancel after start" \
10508 "$P_SRV \
10509 async_operations=d async_private_delay1=1 async_private_delay2=1 \
10510 async_private_error=2" \
10511 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
10512 1 \
10513 -s "Async decrypt callback: using key slot " \
10514 -S "Async resume" \
10515 -s "Async cancel"
10516
10517requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
10518run_test "SSL async private: decrypt, error in resume" \
10519 "$P_SRV \
10520 async_operations=d async_private_delay1=1 async_private_delay2=1 \
10521 async_private_error=3" \
10522 "$P_CLI force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
10523 1 \
10524 -s "Async decrypt callback: using key slot " \
10525 -s "Async resume callback: decrypt done but injected error" \
10526 -S "Async cancel" \
10527 -s "! mbedtls_ssl_handshake returned"
10528
10529requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]10530run_test "SSL async private: cancel after start then operate correctly" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10531 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10532 async_operations=s async_private_delay1=1 async_private_delay2=1 \
10533 async_private_error=-2" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]10534 "$P_CLI; [ \$? -eq 1 ] && $P_CLI" \
10535 0 \
10536 -s "Async cancel" \
10537 -s "! mbedtls_ssl_handshake returned" \
10538 -s "Async resume" \
10539 -s "Successful connection"
10540
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10541requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]10542run_test "SSL async private: error in resume then operate correctly" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10543 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10544 async_operations=s async_private_delay1=1 async_private_delay2=1 \
10545 async_private_error=-3" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]10546 "$P_CLI; [ \$? -eq 1 ] && $P_CLI" \
10547 0 \
10548 -s "! mbedtls_ssl_handshake returned" \
10549 -s "Async resume" \
10550 -s "Successful connection"
10551
10552# key1: ECDSA, key2: RSA; use key1 through async, then key2 directly
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10553requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Valerio Setti3f2309f2023-02-23 13:47:30 +0100[diff] [blame]10554# Note: the function "detect_required_features()" is not able to detect more than
10555# one "force_ciphersuite" per client/server and it only picks the 2nd one.
10556# Therefore the 1st one is added explicitly here
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]10557requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]10558run_test "SSL async private: cancel after start then fall back to transparent key" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10559 "$P_SRV \
10560 async_operations=s async_private_delay1=1 async_private_error=-2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10561 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
10562 key_file2=$DATA_FILES_PATH/server2.key crt_file2=$DATA_FILES_PATH/server2.crt" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]10563 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256;
10564 [ \$? -eq 1 ] &&
10565 $P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
10566 0 \
Gilles Peskinededa75a2018-04-30 10:02:45 +0200[diff] [blame]10567 -s "Async sign callback: using key slot 0" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]10568 -S "Async resume" \
10569 -s "Async cancel" \
10570 -s "! mbedtls_ssl_handshake returned" \
10571 -s "Async sign callback: no key matches this certificate." \
10572 -s "Successful connection"
10573
10574# key1: ECDSA, key2: RSA; use key1 through async, then key2 directly
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10575requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Valerio Setti3f2309f2023-02-23 13:47:30 +0100[diff] [blame]10576# Note: the function "detect_required_features()" is not able to detect more than
10577# one "force_ciphersuite" per client/server and it only picks the 2nd one.
10578# Therefore the 1st one is added explicitly here
Valerio Settid1f991c2023-02-22 12:54:13 +0100[diff] [blame]10579requires_config_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
Gilles Peskine725f1cb2018-06-12 15:06:40 +0200[diff] [blame]10580run_test "SSL async private: sign, error in resume then fall back to transparent key" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10581 "$P_SRV \
10582 async_operations=s async_private_delay1=1 async_private_error=-3 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10583 key_file=$DATA_FILES_PATH/server5.key crt_file=$DATA_FILES_PATH/server5.crt \
10584 key_file2=$DATA_FILES_PATH/server2.key crt_file2=$DATA_FILES_PATH/server2.crt" \
Gilles Peskine60ee4ca2018-01-08 11:28:05 +0100[diff] [blame]10585 "$P_CLI force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256;
10586 [ \$? -eq 1 ] &&
10587 $P_CLI force_ciphersuite=TLS-ECDHE-RSA-WITH-AES-128-CBC-SHA256" \
10588 0 \
10589 -s "Async resume" \
10590 -s "! mbedtls_ssl_handshake returned" \
10591 -s "Async sign callback: no key matches this certificate." \
10592 -s "Successful connection"
10593
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10594requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10595requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Gilles Peskine654bab72019-09-16 15:19:20 +0200[diff] [blame]10596run_test "SSL async private: renegotiation: client-initiated, sign" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10597 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10598 async_operations=s async_private_delay1=1 async_private_delay2=1 \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10599 exchanges=2 renegotiation=1" \
10600 "$P_CLI exchanges=2 renegotiation=1 renegotiate=1" \
10601 0 \
10602 -s "Async sign callback: using key slot " \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10603 -s "Async resume (slot [0-9]): sign done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10604
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10605requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10606requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Gilles Peskine654bab72019-09-16 15:19:20 +0200[diff] [blame]10607run_test "SSL async private: renegotiation: server-initiated, sign" \
Ronald Cronfd4c6af2023-03-11 10:46:01 +0100[diff] [blame]10608 "$P_SRV force_version=tls12 \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10609 async_operations=s async_private_delay1=1 async_private_delay2=1 \
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10610 exchanges=2 renegotiation=1 renegotiate=1" \
10611 "$P_CLI exchanges=2 renegotiation=1" \
10612 0 \
10613 -s "Async sign callback: using key slot " \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10614 -s "Async resume (slot [0-9]): sign done, status=0"
10615
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10616requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10617requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Gilles Peskine654bab72019-09-16 15:19:20 +0200[diff] [blame]10618run_test "SSL async private: renegotiation: client-initiated, decrypt" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10619 "$P_SRV \
10620 async_operations=d async_private_delay1=1 async_private_delay2=1 \
10621 exchanges=2 renegotiation=1" \
10622 "$P_CLI exchanges=2 renegotiation=1 renegotiate=1 \
10623 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
10624 0 \
10625 -s "Async decrypt callback: using key slot " \
10626 -s "Async resume (slot [0-9]): decrypt done, status=0"
10627
Gilles Peskineb74a1c72018-04-24 13:09:22 +0200[diff] [blame]10628requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10629requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Gilles Peskine654bab72019-09-16 15:19:20 +0200[diff] [blame]10630run_test "SSL async private: renegotiation: server-initiated, decrypt" \
Gilles Peskinefcca9d82018-01-12 13:47:48 +0100[diff] [blame]10631 "$P_SRV \
10632 async_operations=d async_private_delay1=1 async_private_delay2=1 \
10633 exchanges=2 renegotiation=1 renegotiate=1" \
10634 "$P_CLI exchanges=2 renegotiation=1 \
10635 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
10636 0 \
10637 -s "Async decrypt callback: using key slot " \
10638 -s "Async resume (slot [0-9]): decrypt done, status=0"
Gilles Peskine3665f1d2018-01-05 21:22:12 +0100[diff] [blame]10639
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10640# Tests for ECC extensions (rfc 4492)
10641
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]10642requires_hash_alg SHA_256
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]10643requires_config_enabled MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10644run_test "Force a non ECC ciphersuite in the client side" \
10645 "$P_SRV debug_level=3" \
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]10646 "$P_CLI debug_level=3 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA256" \
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10647 0 \
Jerry Yu136320b2021-12-21 17:09:00 +0800[diff] [blame]10648 -C "client hello, adding supported_groups extension" \
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10649 -C "client hello, adding supported_point_formats extension" \
10650 -S "found supported elliptic curves extension" \
10651 -S "found supported point formats extension"
10652
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]10653requires_hash_alg SHA_256
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]10654requires_config_enabled MBEDTLS_KEY_EXCHANGE_RSA_ENABLED
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10655run_test "Force a non ECC ciphersuite in the server side" \
Ron Eldor643df7c2018-06-28 16:17:00 +0300[diff] [blame]10656 "$P_SRV debug_level=3 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA256" \
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10657 "$P_CLI debug_level=3" \
10658 0 \
10659 -C "found supported_point_formats extension" \
10660 -S "server hello, supported_point_formats extension"
10661
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]10662requires_hash_alg SHA_256
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10663run_test "Force an ECC ciphersuite in the client side" \
10664 "$P_SRV debug_level=3" \
10665 "$P_CLI debug_level=3 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
10666 0 \
Jerry Yu136320b2021-12-21 17:09:00 +0800[diff] [blame]10667 -c "client hello, adding supported_groups extension" \
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10668 -c "client hello, adding supported_point_formats extension" \
10669 -s "found supported elliptic curves extension" \
10670 -s "found supported point formats extension"
10671
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]10672requires_hash_alg SHA_256
Ron Eldor58093c82018-06-28 13:22:05 +0300[diff] [blame]10673run_test "Force an ECC ciphersuite in the server side" \
10674 "$P_SRV debug_level=3 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256" \
10675 "$P_CLI debug_level=3" \
10676 0 \
10677 -c "found supported_point_formats extension" \
10678 -s "server hello, supported_point_formats extension"
10679
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]10680# Tests for DTLS HelloVerifyRequest
10681
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10682requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]10683run_test "DTLS cookie: enabled" \
10684 "$P_SRV dtls=1 debug_level=2" \
10685 "$P_CLI dtls=1 debug_level=2" \
10686 0 \
10687 -s "cookie verification failed" \
10688 -s "cookie verification passed" \
10689 -S "cookie verification skipped" \
10690 -c "received hello verify request" \
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]10691 -s "hello verification requested" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]10692 -S "SSL - The requested feature is not available"
10693
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10694requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]10695run_test "DTLS cookie: disabled" \
10696 "$P_SRV dtls=1 debug_level=2 cookies=0" \
10697 "$P_CLI dtls=1 debug_level=2" \
10698 0 \
10699 -S "cookie verification failed" \
10700 -S "cookie verification passed" \
10701 -s "cookie verification skipped" \
10702 -C "received hello verify request" \
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]10703 -S "hello verification requested" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]10704 -S "SSL - The requested feature is not available"
10705
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10706requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]10707run_test "DTLS cookie: default (failing)" \
10708 "$P_SRV dtls=1 debug_level=2 cookies=-1" \
10709 "$P_CLI dtls=1 debug_level=2 hs_timeout=100-400" \
10710 1 \
10711 -s "cookie verification failed" \
10712 -S "cookie verification passed" \
10713 -S "cookie verification skipped" \
10714 -C "received hello verify request" \
10715 -S "hello verification requested" \
10716 -s "SSL - The requested feature is not available"
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]10717
10718requires_ipv6
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10719requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]10720run_test "DTLS cookie: enabled, IPv6" \
10721 "$P_SRV dtls=1 debug_level=2 server_addr=::1" \
10722 "$P_CLI dtls=1 debug_level=2 server_addr=::1" \
10723 0 \
10724 -s "cookie verification failed" \
10725 -s "cookie verification passed" \
10726 -S "cookie verification skipped" \
10727 -c "received hello verify request" \
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]10728 -s "hello verification requested" \
Manuel Pégourié-Gonnard0eb6cab2014-07-23 20:17:47 +0200[diff] [blame]10729 -S "SSL - The requested feature is not available"
10730
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10731requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard579950c2014-09-29 17:47:33 +0200[diff] [blame]10732run_test "DTLS cookie: enabled, nbio" \
10733 "$P_SRV dtls=1 nbio=2 debug_level=2" \
10734 "$P_CLI dtls=1 nbio=2 debug_level=2" \
10735 0 \
10736 -s "cookie verification failed" \
10737 -s "cookie verification passed" \
10738 -S "cookie verification skipped" \
10739 -c "received hello verify request" \
Manuel Pégourié-Gonnardcaecdae2014-10-13 19:04:37 +0200[diff] [blame]10740 -s "hello verification requested" \
Manuel Pégourié-Gonnard579950c2014-09-29 17:47:33 +0200[diff] [blame]10741 -S "SSL - The requested feature is not available"
10742
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10743# Tests for client reconnecting from the same port with DTLS
10744
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]10745not_with_valgrind # spurious resend
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10746requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10747run_test "DTLS client reconnect from same port: reference" \
Manuel Pégourié-Gonnardb6929892019-09-09 11:14:37 +0200[diff] [blame]10748 "$P_SRV dtls=1 exchanges=2 read_timeout=20000 hs_timeout=10000-20000" \
10749 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=10000-20000" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10750 0 \
10751 -C "resend" \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]10752 -S "The operation timed out" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10753 -S "Client initiated reconnection from same port"
10754
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]10755not_with_valgrind # spurious resend
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10756requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10757run_test "DTLS client reconnect from same port: reconnect" \
Manuel Pégourié-Gonnardb6929892019-09-09 11:14:37 +0200[diff] [blame]10758 "$P_SRV dtls=1 exchanges=2 read_timeout=20000 hs_timeout=10000-20000" \
10759 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=10000-20000 reconnect_hard=1" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10760 0 \
10761 -C "resend" \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]10762 -S "The operation timed out" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10763 -s "Client initiated reconnection from same port"
10764
Paul Bakker362689d2016-05-13 10:33:25 +0100[diff] [blame]10765not_with_valgrind # server/client too slow to respond in time (next test has higher timeouts)
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10766requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Paul Bakker362689d2016-05-13 10:33:25 +0100[diff] [blame]10767run_test "DTLS client reconnect from same port: reconnect, nbio, no valgrind" \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]10768 "$P_SRV dtls=1 exchanges=2 read_timeout=1000 nbio=2" \
10769 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=500-1000 reconnect_hard=1" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10770 0 \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]10771 -S "The operation timed out" \
Manuel Pégourié-Gonnardd745a1a2015-09-08 12:40:43 +0200[diff] [blame]10772 -s "Client initiated reconnection from same port"
10773
Paul Bakker362689d2016-05-13 10:33:25 +0100[diff] [blame]10774only_with_valgrind # Only with valgrind, do previous test but with higher read_timeout and hs_timeout
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10775requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Paul Bakker362689d2016-05-13 10:33:25 +0100[diff] [blame]10776run_test "DTLS client reconnect from same port: reconnect, nbio, valgrind" \
10777 "$P_SRV dtls=1 exchanges=2 read_timeout=2000 nbio=2 hs_timeout=1500-6000" \
10778 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=1500-3000 reconnect_hard=1" \
10779 0 \
10780 -S "The operation timed out" \
10781 -s "Client initiated reconnection from same port"
10782
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10783requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]10784run_test "DTLS client reconnect from same port: no cookies" \
10785 "$P_SRV dtls=1 exchanges=2 read_timeout=1000 cookies=0" \
Manuel Pégourié-Gonnard6ad23b92015-09-15 12:57:46 +0200[diff] [blame]10786 "$P_CLI dtls=1 exchanges=2 debug_level=2 hs_timeout=500-8000 reconnect_hard=1" \
10787 0 \
Manuel Pégourié-Gonnard259db912015-09-09 11:37:17 +0200[diff] [blame]10788 -s "The operation timed out" \
10789 -S "Client initiated reconnection from same port"
10790
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10791requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardbaad2de2020-03-13 11:11:02 +0100[diff] [blame]10792run_test "DTLS client reconnect from same port: attacker-injected" \
10793 -p "$P_PXY inject_clihlo=1" \
10794 "$P_SRV dtls=1 exchanges=2 debug_level=1" \
10795 "$P_CLI dtls=1 exchanges=2" \
10796 0 \
10797 -s "possible client reconnect from the same port" \
10798 -S "Client initiated reconnection from same port"
10799
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]10800# Tests for various cases of client authentication with DTLS
10801# (focused on handshake flows and message parsing)
10802
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10803requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]10804run_test "DTLS client auth: required" \
10805 "$P_SRV dtls=1 auth_mode=required" \
10806 "$P_CLI dtls=1" \
10807 0 \
10808 -s "Verifying peer X.509 certificate... ok"
10809
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10810requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]10811run_test "DTLS client auth: optional, client has no cert" \
10812 "$P_SRV dtls=1 auth_mode=optional" \
10813 "$P_CLI dtls=1 crt_file=none key_file=none" \
10814 0 \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]10815 -s "! Certificate was missing"
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]10816
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10817requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]10818run_test "DTLS client auth: none, client has no cert" \
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]10819 "$P_SRV dtls=1 auth_mode=none" \
10820 "$P_CLI dtls=1 crt_file=none key_file=none debug_level=2" \
10821 0 \
10822 -c "skip write certificate$" \
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]10823 -s "! Certificate verification was skipped"
Manuel Pégourié-Gonnard08a1d4b2014-09-26 10:35:50 +0200[diff] [blame]10824
Manuel Pégourié-Gonnard0a885742015-08-04 12:08:35 +0200[diff] [blame]10825run_test "DTLS wrong PSK: badmac alert" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]10826 "$P_SRV dtls=1 psk=73776f726466697368 force_ciphersuite=TLS-PSK-WITH-AES-128-GCM-SHA256" \
Gilles Peskineabb1c222024-05-13 21:06:26 +0200[diff] [blame]10827 "$P_CLI dtls=1 psk=73776f726466697374" \
Manuel Pégourié-Gonnard0a885742015-08-04 12:08:35 +0200[diff] [blame]10828 1 \
10829 -s "SSL - Verification of the message MAC failed" \
10830 -c "SSL - A fatal alert message was received from our peer"
10831
Manuel Pégourié-Gonnard502bf302014-08-20 13:12:58 +0200[diff] [blame]10832# Tests for receiving fragmented handshake messages with DTLS
10833
10834requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10835requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard502bf302014-08-20 13:12:58 +0200[diff] [blame]10836run_test "DTLS reassembly: no fragmentation (gnutls server)" \
10837 "$G_SRV -u --mtu 2048 -a" \
10838 "$P_CLI dtls=1 debug_level=2" \
10839 0 \
10840 -C "found fragmented DTLS handshake message" \
10841 -C "error"
10842
10843requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10844requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard502bf302014-08-20 13:12:58 +0200[diff] [blame]10845run_test "DTLS reassembly: some fragmentation (gnutls server)" \
10846 "$G_SRV -u --mtu 512" \
10847 "$P_CLI dtls=1 debug_level=2" \
10848 0 \
10849 -c "found fragmented DTLS handshake message" \
10850 -C "error"
10851
10852requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10853requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard502bf302014-08-20 13:12:58 +0200[diff] [blame]10854run_test "DTLS reassembly: more fragmentation (gnutls server)" \
10855 "$G_SRV -u --mtu 128" \
10856 "$P_CLI dtls=1 debug_level=2" \
10857 0 \
10858 -c "found fragmented DTLS handshake message" \
10859 -C "error"
10860
10861requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10862requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard502bf302014-08-20 13:12:58 +0200[diff] [blame]10863run_test "DTLS reassembly: more fragmentation, nbio (gnutls server)" \
10864 "$G_SRV -u --mtu 128" \
10865 "$P_CLI dtls=1 nbio=2 debug_level=2" \
10866 0 \
10867 -c "found fragmented DTLS handshake message" \
10868 -C "error"
10869
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]10870requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]10871requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10872requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]10873run_test "DTLS reassembly: fragmentation, renego (gnutls server)" \
10874 "$G_SRV -u --mtu 256" \
10875 "$P_CLI debug_level=3 dtls=1 renegotiation=1 renegotiate=1" \
10876 0 \
10877 -c "found fragmented DTLS handshake message" \
10878 -c "client hello, adding renegotiation extension" \
10879 -c "found renegotiation extension" \
10880 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]10881 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]10882 -C "error" \
10883 -s "Extra-header:"
10884
10885requires_gnutls
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]10886requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10887requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]10888run_test "DTLS reassembly: fragmentation, nbio, renego (gnutls server)" \
10889 "$G_SRV -u --mtu 256" \
10890 "$P_CLI debug_level=3 nbio=2 dtls=1 renegotiation=1 renegotiate=1" \
10891 0 \
10892 -c "found fragmented DTLS handshake message" \
10893 -c "client hello, adding renegotiation extension" \
10894 -c "found renegotiation extension" \
10895 -c "=> renegotiate" \
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]10896 -C "mbedtls_ssl_handshake returned" \
Manuel Pégourié-Gonnard0c4cbc72014-09-02 14:47:31 +0200[diff] [blame]10897 -C "error" \
10898 -s "Extra-header:"
10899
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10900requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]10901run_test "DTLS reassembly: no fragmentation (openssl server)" \
10902 "$O_SRV -dtls -mtu 2048" \
10903 "$P_CLI dtls=1 debug_level=2" \
10904 0 \
10905 -C "found fragmented DTLS handshake message" \
10906 -C "error"
10907
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10908requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]10909run_test "DTLS reassembly: some fragmentation (openssl server)" \
Valerio Setti6ba247c2023-03-14 17:13:43 +0100[diff] [blame]10910 "$O_SRV -dtls -mtu 256" \
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]10911 "$P_CLI dtls=1 debug_level=2" \
10912 0 \
10913 -c "found fragmented DTLS handshake message" \
10914 -C "error"
10915
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10916requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]10917run_test "DTLS reassembly: more fragmentation (openssl server)" \
10918 "$O_SRV -dtls -mtu 256" \
10919 "$P_CLI dtls=1 debug_level=2" \
10920 0 \
10921 -c "found fragmented DTLS handshake message" \
10922 -C "error"
10923
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10924requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]10925run_test "DTLS reassembly: fragmentation, nbio (openssl server)" \
10926 "$O_SRV -dtls -mtu 256" \
10927 "$P_CLI dtls=1 nbio=2 debug_level=2" \
10928 0 \
10929 -c "found fragmented DTLS handshake message" \
10930 -C "error"
10931
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]10932# Tests for sending fragmented handshake messages with DTLS
10933#
10934# Use client auth when we need the client to send large messages,
10935# and use large cert chains on both sides too (the long chains we have all use
10936# both RSA and ECDSA, but ideally we should have long chains with either).
10937# Sizes reached (UDP payload):
10938# - 2037B for server certificate
10939# - 1542B for client certificate
10940# - 1013B for newsessionticket
10941# - all others below 512B
10942# All those tests assume MAX_CONTENT_LEN is at least 2048
10943
10944requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
10945requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]10946requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]10947requires_max_content_len 4096
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10948requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]10949run_test "DTLS fragmenting: none (for reference)" \
10950 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10951 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
10952 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]10953 hs_timeout=2500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]10954 max_frag_len=4096" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]10955 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10956 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
10957 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]10958 hs_timeout=2500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]10959 max_frag_len=4096" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]10960 0 \
10961 -S "found fragmented DTLS handshake message" \
10962 -C "found fragmented DTLS handshake message" \
10963 -C "error"
10964
10965requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
10966requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]10967requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]10968requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10969requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]10970run_test "DTLS fragmenting: server only (max_frag_len)" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]10971 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10972 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
10973 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]10974 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]10975 max_frag_len=1024" \
10976 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10977 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
10978 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]10979 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]10980 max_frag_len=2048" \
10981 0 \
10982 -S "found fragmented DTLS handshake message" \
10983 -c "found fragmented DTLS handshake message" \
10984 -C "error"
10985
Hanno Becker69ca0ad2018-08-24 12:11:35 +0100[diff] [blame]10986# With the MFL extension, the server has no way of forcing
10987# the client to not exceed a certain MTU; hence, the following
10988# test can't be replicated with an MTU proxy such as the one
10989# `client-initiated, server only (max_frag_len)` below.
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]10990requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
10991requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]10992requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]10993requires_max_content_len 4096
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]10994requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]10995run_test "DTLS fragmenting: server only (more) (max_frag_len)" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]10996 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]10997 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
10998 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]10999 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11000 max_frag_len=512" \
11001 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11002 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11003 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11004 hs_timeout=2500-60000 \
Hanno Becker69ca0ad2018-08-24 12:11:35 +0100[diff] [blame]11005 max_frag_len=4096" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11006 0 \
11007 -S "found fragmented DTLS handshake message" \
11008 -c "found fragmented DTLS handshake message" \
11009 -C "error"
11010
11011requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11012requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11013requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11014requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11015requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11016run_test "DTLS fragmenting: client-initiated, server only (max_frag_len)" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11017 "$P_SRV dtls=1 debug_level=2 auth_mode=none \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11018 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11019 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11020 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11021 max_frag_len=2048" \
11022 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11023 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11024 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11025 hs_timeout=2500-60000 \
11026 max_frag_len=1024" \
11027 0 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11028 -S "found fragmented DTLS handshake message" \
11029 -c "found fragmented DTLS handshake message" \
11030 -C "error"
11031
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11032# While not required by the standard defining the MFL extension
11033# (according to which it only applies to records, not to datagrams),
11034# Mbed TLS will never send datagrams larger than MFL + { Max record expansion },
11035# as otherwise there wouldn't be any means to communicate MTU restrictions
11036# to the peer.
11037# The next test checks that no datagrams significantly larger than the
11038# negotiated MFL are sent.
11039requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11040requires_config_enabled MBEDTLS_RSA_C
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11041requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11042requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11043requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11044run_test "DTLS fragmenting: client-initiated, server only (max_frag_len), proxy MTU" \
Andrzej Kurek0fc9cf42018-10-09 03:09:41 -0400[diff] [blame]11045 -p "$P_PXY mtu=1110" \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11046 "$P_SRV dtls=1 debug_level=2 auth_mode=none \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11047 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11048 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11049 hs_timeout=2500-60000 \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11050 max_frag_len=2048" \
11051 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11052 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11053 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11054 hs_timeout=2500-60000 \
11055 max_frag_len=1024" \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11056 0 \
11057 -S "found fragmented DTLS handshake message" \
11058 -c "found fragmented DTLS handshake message" \
11059 -C "error"
11060
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11061requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11062requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11063requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11064requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11065requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11066run_test "DTLS fragmenting: client-initiated, both (max_frag_len)" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11067 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11068 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11069 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11070 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11071 max_frag_len=2048" \
11072 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11073 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11074 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11075 hs_timeout=2500-60000 \
11076 max_frag_len=1024" \
Manuel Pégourié-Gonnard2cb17e22017-09-19 13:00:47 +0200[diff] [blame]11077 0 \
11078 -s "found fragmented DTLS handshake message" \
11079 -c "found fragmented DTLS handshake message" \
11080 -C "error"
11081
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11082# While not required by the standard defining the MFL extension
11083# (according to which it only applies to records, not to datagrams),
11084# Mbed TLS will never send datagrams larger than MFL + { Max record expansion },
11085# as otherwise there wouldn't be any means to communicate MTU restrictions
11086# to the peer.
11087# The next test checks that no datagrams significantly larger than the
11088# negotiated MFL are sent.
11089requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11090requires_config_enabled MBEDTLS_RSA_C
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11091requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11092requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11093requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11094run_test "DTLS fragmenting: client-initiated, both (max_frag_len), proxy MTU" \
Andrzej Kurek0fc9cf42018-10-09 03:09:41 -0400[diff] [blame]11095 -p "$P_PXY mtu=1110" \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11096 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11097 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11098 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11099 hs_timeout=2500-60000 \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11100 max_frag_len=2048" \
11101 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11102 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11103 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11104 hs_timeout=2500-60000 \
11105 max_frag_len=1024" \
Hanno Beckerc92b5c82018-08-24 11:48:01 +0100[diff] [blame]11106 0 \
11107 -s "found fragmented DTLS handshake message" \
11108 -c "found fragmented DTLS handshake message" \
11109 -C "error"
11110
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11111requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11112requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11113requires_max_content_len 4096
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11114requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11115run_test "DTLS fragmenting: none (for reference) (MTU)" \
11116 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11117 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11118 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11119 hs_timeout=2500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]11120 mtu=4096" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11121 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11122 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11123 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11124 hs_timeout=2500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]11125 mtu=4096" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11126 0 \
11127 -S "found fragmented DTLS handshake message" \
11128 -C "found fragmented DTLS handshake message" \
11129 -C "error"
11130
11131requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11132requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11133requires_max_content_len 4096
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11134requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11135run_test "DTLS fragmenting: client (MTU)" \
11136 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11137 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11138 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]11139 hs_timeout=3500-60000 \
Hanno Becker12405e72018-08-13 16:45:46 +0100[diff] [blame]11140 mtu=4096" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11141 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11142 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11143 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]11144 hs_timeout=3500-60000 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11145 mtu=1024" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11146 0 \
11147 -s "found fragmented DTLS handshake message" \
11148 -C "found fragmented DTLS handshake message" \
11149 -C "error"
11150
11151requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11152requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11153requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11154requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11155run_test "DTLS fragmenting: server (MTU)" \
11156 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11157 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11158 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11159 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11160 mtu=512" \
11161 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11162 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11163 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11164 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11165 mtu=2048" \
11166 0 \
11167 -S "found fragmented DTLS handshake message" \
11168 -c "found fragmented DTLS handshake message" \
11169 -C "error"
11170
11171requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11172requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11173requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11174requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11175run_test "DTLS fragmenting: both (MTU=1024)" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11176 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11177 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11178 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11179 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11180 hs_timeout=2500-60000 \
Andrzej Kurek95805282018-10-11 08:55:37 -0400[diff] [blame]11181 mtu=1024" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11182 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11183 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11184 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11185 hs_timeout=2500-60000 \
11186 mtu=1024" \
Manuel Pégourié-Gonnardb747c6c2018-08-12 13:28:53 +0200[diff] [blame]11187 0 \
11188 -s "found fragmented DTLS handshake message" \
11189 -c "found fragmented DTLS handshake message" \
11190 -C "error"
11191
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]11192# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11193requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11194requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]11195requires_hash_alg SHA_256
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11196requires_max_content_len 2048
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11197run_test "DTLS fragmenting: both (MTU=512)" \
Hanno Becker8d832182018-03-15 10:14:19 +0000[diff] [blame]11198 -p "$P_PXY mtu=512" \
Hanno Becker72a4f032017-11-15 16:39:20 +0000[diff] [blame]11199 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11200 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11201 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11202 hs_timeout=2500-60000 \
Hanno Becker72a4f032017-11-15 16:39:20 +0000[diff] [blame]11203 mtu=512" \
11204 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11205 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11206 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11207 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
11208 hs_timeout=2500-60000 \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]11209 mtu=512" \
Manuel Pégourié-Gonnard63eca932014-09-08 16:39:08 +0200[diff] [blame]11210 0 \
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]11211 -s "found fragmented DTLS handshake message" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]11212 -c "found fragmented DTLS handshake message" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]11213 -C "error"
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]11214
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11215# Test for automatic MTU reduction on repeated resend.
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]11216# Forcing ciphersuite for this test to fit the MTU of 508 with full config.
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11217# The ratio of max/min timeout should ideally equal 4 to accept two
11218# retransmissions, but in some cases (like both the server and client using
11219# fragmentation and auto-reduction) an extra retransmission might occur,
11220# hence the ratio of 8.
Hanno Becker37029eb2018-08-29 17:01:40 +0100[diff] [blame]11221not_with_valgrind
Manuel Pégourié-Gonnardb8eec192018-08-20 09:34:02 +0200[diff] [blame]11222requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11223requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11224requires_max_content_len 2048
Gilles Peskine0d8b86a2019-09-20 18:03:11 +0200[diff] [blame]11225run_test "DTLS fragmenting: proxy MTU: auto-reduction (not valgrind)" \
Manuel Pégourié-Gonnardb8eec192018-08-20 09:34:02 +0200[diff] [blame]11226 -p "$P_PXY mtu=508" \
11227 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11228 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11229 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11230 hs_timeout=400-3200" \
Manuel Pégourié-Gonnardb8eec192018-08-20 09:34:02 +0200[diff] [blame]11231 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11232 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11233 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11234 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
11235 hs_timeout=400-3200" \
Manuel Pégourié-Gonnardb8eec192018-08-20 09:34:02 +0200[diff] [blame]11236 0 \
11237 -s "found fragmented DTLS handshake message" \
11238 -c "found fragmented DTLS handshake message" \
11239 -C "error"
11240
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]11241# Forcing ciphersuite for this test to fit the MTU of 508 with full config.
Hanno Becker108992e2018-08-29 17:04:18 +0100[diff] [blame]11242only_with_valgrind
11243requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11244requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11245requires_max_content_len 2048
Gilles Peskine0d8b86a2019-09-20 18:03:11 +0200[diff] [blame]11246run_test "DTLS fragmenting: proxy MTU: auto-reduction (with valgrind)" \
Hanno Becker108992e2018-08-29 17:04:18 +0100[diff] [blame]11247 -p "$P_PXY mtu=508" \
11248 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11249 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11250 key_file=$DATA_FILES_PATH/server7.key \
Hanno Becker108992e2018-08-29 17:04:18 +0100[diff] [blame]11251 hs_timeout=250-10000" \
11252 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11253 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11254 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11255 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Hanno Becker108992e2018-08-29 17:04:18 +0100[diff] [blame]11256 hs_timeout=250-10000" \
11257 0 \
11258 -s "found fragmented DTLS handshake message" \
11259 -c "found fragmented DTLS handshake message" \
11260 -C "error"
11261
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11262# the proxy shouldn't drop or mess up anything, so we shouldn't need to resend
Manuel Pégourié-Gonnard3d183ce2018-08-22 09:56:22 +0200[diff] [blame]11263# OTOH the client might resend if the server is to slow to reset after sending
11264# a HelloVerifyRequest, so only check for no retransmission server-side
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11265not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11266requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11267requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11268requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11269requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11270run_test "DTLS fragmenting: proxy MTU, simple handshake (MTU=1024)" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11271 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11272 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11273 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11274 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11275 hs_timeout=10000-60000 \
11276 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11277 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11278 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11279 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11280 hs_timeout=10000-60000 \
11281 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11282 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11283 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11284 -s "found fragmented DTLS handshake message" \
11285 -c "found fragmented DTLS handshake message" \
11286 -C "error"
11287
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]11288# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11289# the proxy shouldn't drop or mess up anything, so we shouldn't need to resend
11290# OTOH the client might resend if the server is to slow to reset after sending
11291# a HelloVerifyRequest, so only check for no retransmission server-side
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11292not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11293requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11294requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11295requires_max_content_len 2048
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11296run_test "DTLS fragmenting: proxy MTU, simple handshake (MTU=512)" \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11297 -p "$P_PXY mtu=512" \
11298 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11299 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11300 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11301 hs_timeout=10000-60000 \
11302 mtu=512" \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11303 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11304 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11305 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11306 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
11307 hs_timeout=10000-60000 \
11308 mtu=512" \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11309 0 \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11310 -S "autoreduction" \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11311 -s "found fragmented DTLS handshake message" \
11312 -c "found fragmented DTLS handshake message" \
11313 -C "error"
11314
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11315not_with_valgrind # spurious autoreduction due to timeout
11316requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11317requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11318requires_max_content_len 2048
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11319requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11320run_test "DTLS fragmenting: proxy MTU, simple handshake, nbio (MTU=1024)" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11321 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11322 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11323 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11324 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11325 hs_timeout=10000-60000 \
11326 mtu=1024 nbio=2" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11327 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11328 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11329 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11330 hs_timeout=10000-60000 \
11331 mtu=1024 nbio=2" \
11332 0 \
11333 -S "autoreduction" \
11334 -s "found fragmented DTLS handshake message" \
11335 -c "found fragmented DTLS handshake message" \
11336 -C "error"
11337
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]11338# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11339not_with_valgrind # spurious autoreduction due to timeout
11340requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11341requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11342requires_max_content_len 2048
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11343run_test "DTLS fragmenting: proxy MTU, simple handshake, nbio (MTU=512)" \
11344 -p "$P_PXY mtu=512" \
11345 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11346 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11347 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11348 hs_timeout=10000-60000 \
11349 mtu=512 nbio=2" \
11350 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11351 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11352 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11353 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
11354 hs_timeout=10000-60000 \
11355 mtu=512 nbio=2" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11356 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11357 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11358 -s "found fragmented DTLS handshake message" \
11359 -c "found fragmented DTLS handshake message" \
11360 -C "error"
11361
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]11362# Forcing ciphersuite for this test to fit the MTU of 1450 with full config.
Hanno Beckerb841b4f2018-08-28 10:25:51 +0100[diff] [blame]11363# This ensures things still work after session_reset().
11364# It also exercises the "resumed handshake" flow.
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]11365# Since we don't support reading fragmented ClientHello yet,
11366# up the MTU to 1450 (larger than ClientHello with session ticket,
11367# but still smaller than client's Certificate to ensure fragmentation).
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11368# An autoreduction on the client-side might happen if the server is
11369# slow to reset, therefore omitting '-C "autoreduction"' below.
Manuel Pégourié-Gonnard2f2d9022018-08-21 12:17:54 +0200[diff] [blame]11370# reco_delay avoids races where the client reconnects before the server has
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11371# resumed listening, which would result in a spurious autoreduction.
11372not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]11373requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11374requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11375requires_max_content_len 2048
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]11376run_test "DTLS fragmenting: proxy MTU, resumed handshake" \
11377 -p "$P_PXY mtu=1450" \
11378 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11379 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11380 key_file=$DATA_FILES_PATH/server7.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11381 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]11382 mtu=1450" \
11383 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11384 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11385 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11386 hs_timeout=10000-60000 \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11387 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Jerry Yua15af372022-12-05 15:55:24 +0800[diff] [blame]11388 mtu=1450 reconnect=1 skip_close_notify=1 reco_delay=1000" \
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]11389 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11390 -S "autoreduction" \
Manuel Pégourié-Gonnard19c62f92018-08-16 10:50:39 +0200[diff] [blame]11391 -s "found fragmented DTLS handshake message" \
11392 -c "found fragmented DTLS handshake message" \
11393 -C "error"
11394
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11395# An autoreduction on the client-side might happen if the server is
11396# slow to reset, therefore omitting '-C "autoreduction"' below.
11397not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11398requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11399requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]11400requires_hash_alg SHA_256
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11401requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11402requires_max_content_len 2048
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11403run_test "DTLS fragmenting: proxy MTU, ChachaPoly renego" \
11404 -p "$P_PXY mtu=512" \
11405 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11406 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11407 key_file=$DATA_FILES_PATH/server7.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11408 exchanges=2 renegotiation=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11409 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11410 mtu=512" \
11411 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11412 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11413 key_file=$DATA_FILES_PATH/server8.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11414 exchanges=2 renegotiation=1 renegotiate=1 \
Ronald Cron60f76662023-11-28 17:52:42 +0100[diff] [blame]11415 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-CHACHA20-POLY1305-SHA256 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11416 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11417 mtu=512" \
11418 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11419 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11420 -s "found fragmented DTLS handshake message" \
11421 -c "found fragmented DTLS handshake message" \
11422 -C "error"
11423
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11424# An autoreduction on the client-side might happen if the server is
11425# slow to reset, therefore omitting '-C "autoreduction"' below.
11426not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11427requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11428requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]11429requires_hash_alg SHA_256
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11430requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11431requires_max_content_len 2048
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11432run_test "DTLS fragmenting: proxy MTU, AES-GCM renego" \
11433 -p "$P_PXY mtu=512" \
11434 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11435 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11436 key_file=$DATA_FILES_PATH/server7.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11437 exchanges=2 renegotiation=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11438 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11439 mtu=512" \
11440 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11441 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11442 key_file=$DATA_FILES_PATH/server8.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11443 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11444 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11445 hs_timeout=10000-60000 \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11446 mtu=512" \
11447 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11448 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11449 -s "found fragmented DTLS handshake message" \
11450 -c "found fragmented DTLS handshake message" \
11451 -C "error"
11452
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11453# An autoreduction on the client-side might happen if the server is
11454# slow to reset, therefore omitting '-C "autoreduction"' below.
11455not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11456requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11457requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]11458requires_hash_alg SHA_256
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11459requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11460requires_max_content_len 2048
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11461run_test "DTLS fragmenting: proxy MTU, AES-CCM renego" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11462 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11463 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11464 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11465 key_file=$DATA_FILES_PATH/server7.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11466 exchanges=2 renegotiation=1 \
11467 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11468 hs_timeout=10000-60000 \
11469 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11470 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11471 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11472 key_file=$DATA_FILES_PATH/server8.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11473 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11474 hs_timeout=10000-60000 \
11475 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11476 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11477 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11478 -s "found fragmented DTLS handshake message" \
11479 -c "found fragmented DTLS handshake message" \
11480 -C "error"
11481
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11482# An autoreduction on the client-side might happen if the server is
11483# slow to reset, therefore omitting '-C "autoreduction"' below.
11484not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11485requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11486requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]11487requires_hash_alg SHA_256
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11488requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11489requires_config_enabled MBEDTLS_SSL_ENCRYPT_THEN_MAC
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11490requires_max_content_len 2048
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11491run_test "DTLS fragmenting: proxy MTU, AES-CBC EtM renego" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11492 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11493 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11494 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11495 key_file=$DATA_FILES_PATH/server7.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11496 exchanges=2 renegotiation=1 \
11497 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11498 hs_timeout=10000-60000 \
11499 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11500 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11501 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11502 key_file=$DATA_FILES_PATH/server8.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11503 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11504 hs_timeout=10000-60000 \
11505 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11506 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11507 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11508 -s "found fragmented DTLS handshake message" \
11509 -c "found fragmented DTLS handshake message" \
11510 -C "error"
11511
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11512# An autoreduction on the client-side might happen if the server is
11513# slow to reset, therefore omitting '-C "autoreduction"' below.
11514not_with_valgrind # spurious autoreduction due to timeout
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11515requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11516requires_config_enabled MBEDTLS_RSA_C
Andrzej Kurek934e9cd2022-09-05 14:44:46 -0400[diff] [blame]11517requires_hash_alg SHA_256
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11518requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11519requires_max_content_len 2048
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11520run_test "DTLS fragmenting: proxy MTU, AES-CBC non-EtM renego" \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11521 -p "$P_PXY mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11522 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11523 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11524 key_file=$DATA_FILES_PATH/server7.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11525 exchanges=2 renegotiation=1 \
11526 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-CBC-SHA256 etm=0 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11527 hs_timeout=10000-60000 \
11528 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11529 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11530 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11531 key_file=$DATA_FILES_PATH/server8.key \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11532 exchanges=2 renegotiation=1 renegotiate=1 \
Andrzej Kurek52f84912018-10-05 07:53:40 -0400[diff] [blame]11533 hs_timeout=10000-60000 \
11534 mtu=1024" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11535 0 \
Andrzej Kurek35f2f302018-10-09 08:52:14 -0400[diff] [blame]11536 -S "autoreduction" \
Manuel Pégourié-Gonnard72c27072018-08-13 12:37:51 +0200[diff] [blame]11537 -s "found fragmented DTLS handshake message" \
11538 -c "found fragmented DTLS handshake message" \
11539 -C "error"
11540
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]11541# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]11542requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11543requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]11544client_needs_more_time 2
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11545requires_max_content_len 2048
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]11546run_test "DTLS fragmenting: proxy MTU + 3d" \
11547 -p "$P_PXY mtu=512 drop=8 delay=8 duplicate=8" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]11548 "$P_SRV dgram_packing=0 dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11549 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11550 key_file=$DATA_FILES_PATH/server7.key \
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]11551 hs_timeout=250-10000 mtu=512" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]11552 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11553 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11554 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11555 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]11556 hs_timeout=250-10000 mtu=512" \
Manuel Pégourié-Gonnard2d56f0d2018-08-16 11:09:03 +0200[diff] [blame]11557 0 \
11558 -s "found fragmented DTLS handshake message" \
11559 -c "found fragmented DTLS handshake message" \
11560 -C "error"
11561
Andrzej Kurek77826052018-10-11 07:34:08 -0400[diff] [blame]11562# Forcing ciphersuite for this test to fit the MTU of 512 with full config.
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11563requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11564requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11565client_needs_more_time 2
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11566requires_max_content_len 2048
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11567run_test "DTLS fragmenting: proxy MTU + 3d, nbio" \
11568 -p "$P_PXY mtu=512 drop=8 delay=8 duplicate=8" \
11569 "$P_SRV dtls=1 debug_level=2 auth_mode=required \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11570 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11571 key_file=$DATA_FILES_PATH/server7.key \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11572 hs_timeout=250-10000 mtu=512 nbio=2" \
11573 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11574 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11575 key_file=$DATA_FILES_PATH/server8.key \
Andrzej Kurek7311c782018-10-11 06:49:41 -0400[diff] [blame]11576 force_ciphersuite=TLS-ECDHE-ECDSA-WITH-AES-128-GCM-SHA256 \
Manuel Pégourié-Gonnardc1d54b72018-08-22 10:02:59 +0200[diff] [blame]11577 hs_timeout=250-10000 mtu=512 nbio=2" \
11578 0 \
11579 -s "found fragmented DTLS handshake message" \
11580 -c "found fragmented DTLS handshake message" \
11581 -C "error"
11582
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]11583# interop tests for DTLS fragmentating with reliable connection
11584#
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11585# here and below we just want to test that the we fragment in a way that
11586# pleases other implementations, so we don't need the peer to fragment
11587requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11588requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard61512982018-08-21 09:40:07 +0200[diff] [blame]11589requires_gnutls
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11590requires_max_content_len 2048
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11591run_test "DTLS fragmenting: gnutls server, DTLS 1.2" \
11592 "$G_SRV -u" \
11593 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11594 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11595 key_file=$DATA_FILES_PATH/server8.key \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]11596 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11597 0 \
11598 -c "fragmenting handshake message" \
11599 -C "error"
11600
Hanno Beckerb9a00862018-08-28 10:20:22 +0100[diff] [blame]11601# We use --insecure for the GnuTLS client because it expects
11602# the hostname / IP it connects to to be the name used in the
11603# certificate obtained from the server. Here, however, it
11604# connects to 127.0.0.1 while our test certificates use 'localhost'
11605# as the server name in the certificate. This will make the
Shaun Case8b0ecbc2021-12-20 21:14:10 -0800[diff] [blame]11606# certificate validation fail, but passing --insecure makes
Hanno Beckerb9a00862018-08-28 10:20:22 +0100[diff] [blame]11607# GnuTLS continue the connection nonetheless.
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11608requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11609requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard61512982018-08-21 09:40:07 +0200[diff] [blame]11610requires_gnutls
Andrzej Kurekb4593462018-10-11 08:43:30 -0400[diff] [blame]11611requires_not_i686
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11612requires_max_content_len 2048
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11613run_test "DTLS fragmenting: gnutls client, DTLS 1.2" \
Valerio Setti3b2c0282023-03-08 10:22:29 +0100[diff] [blame]11614 "$P_SRV dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11615 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11616 key_file=$DATA_FILES_PATH/server7.key \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]11617 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnard34aa1872018-08-23 19:07:15 +0200[diff] [blame]11618 "$G_CLI -u --insecure 127.0.0.1" \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11619 0 \
11620 -s "fragmenting handshake message"
11621
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11622requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11623requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11624requires_max_content_len 2048
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11625run_test "DTLS fragmenting: openssl server, DTLS 1.2" \
11626 "$O_SRV -dtls1_2 -verify 10" \
11627 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11628 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11629 key_file=$DATA_FILES_PATH/server8.key \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]11630 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11631 0 \
11632 -c "fragmenting handshake message" \
11633 -C "error"
11634
11635requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11636requires_config_enabled MBEDTLS_RSA_C
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11637requires_max_content_len 2048
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11638run_test "DTLS fragmenting: openssl client, DTLS 1.2" \
11639 "$P_SRV dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11640 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11641 key_file=$DATA_FILES_PATH/server7.key \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]11642 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnard1218bc02018-08-17 10:51:26 +0200[diff] [blame]11643 "$O_CLI -dtls1_2" \
11644 0 \
11645 -s "fragmenting handshake message"
11646
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]11647# interop tests for DTLS fragmentating with unreliable connection
11648#
11649# again we just want to test that the we fragment in a way that
11650# pleases other implementations, so we don't need the peer to fragment
11651requires_gnutls_next
11652requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11653requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnard02f3a8a2018-08-20 10:49:28 +0200[diff] [blame]11654client_needs_more_time 4
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11655requires_max_content_len 2048
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]11656run_test "DTLS fragmenting: 3d, gnutls server, DTLS 1.2" \
11657 -p "$P_PXY drop=8 delay=8 duplicate=8" \
11658 "$G_NEXT_SRV -u" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]11659 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11660 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11661 key_file=$DATA_FILES_PATH/server8.key \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]11662 hs_timeout=250-60000 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]11663 0 \
11664 -c "fragmenting handshake message" \
11665 -C "error"
11666
11667requires_gnutls_next
11668requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11669requires_config_enabled MBEDTLS_RSA_C
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]11670client_needs_more_time 4
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11671requires_max_content_len 2048
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]11672run_test "DTLS fragmenting: 3d, gnutls client, DTLS 1.2" \
11673 -p "$P_PXY drop=8 delay=8 duplicate=8" \
11674 "$P_SRV dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11675 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11676 key_file=$DATA_FILES_PATH/server7.key \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]11677 hs_timeout=250-60000 mtu=512 force_version=dtls12" \
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]11678 "$G_NEXT_CLI -u --insecure 127.0.0.1" \
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]11679 0 \
11680 -s "fragmenting handshake message"
11681
Zhangsen Wang91385122022-07-12 01:48:17 +0000[diff] [blame]11682## The test below requires 1.1.1a or higher version of openssl, otherwise
11683## it might trigger a bug due to openssl server (https://github.com/openssl/openssl/issues/6902)
Zhangsen Wang87a9c862022-06-28 06:10:35 +0000[diff] [blame]11684requires_openssl_next
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]11685requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11686requires_config_enabled MBEDTLS_RSA_C
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]11687client_needs_more_time 4
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11688requires_max_content_len 2048
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]11689run_test "DTLS fragmenting: 3d, openssl server, DTLS 1.2" \
11690 -p "$P_PXY drop=8 delay=8 duplicate=8" \
Zhangsen Wang87a9c862022-06-28 06:10:35 +0000[diff] [blame]11691 "$O_NEXT_SRV -dtls1_2 -verify 10" \
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]11692 "$P_CLI dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11693 crt_file=$DATA_FILES_PATH/server8_int-ca2.crt \
11694 key_file=$DATA_FILES_PATH/server8.key \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]11695 hs_timeout=250-60000 mtu=512 force_version=dtls12" \
Hanno Becker3b8b40c2018-08-28 10:25:41 +0100[diff] [blame]11696 0 \
11697 -c "fragmenting handshake message" \
11698 -C "error"
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]11699
Zhangsen Wangd5e8a482022-07-29 07:53:36 +0000[diff] [blame]11700## the test below will time out with certain seed.
Zhangsen Wangbaeffbb2022-07-29 06:34:47 +0000[diff] [blame]11701## The cause is an openssl bug (https://github.com/openssl/openssl/issues/18887)
11702skip_next_test
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]11703requires_config_enabled MBEDTLS_SSL_PROTO_DTLS
11704requires_config_enabled MBEDTLS_RSA_C
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]11705client_needs_more_time 4
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]11706requires_max_content_len 2048
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]11707run_test "DTLS fragmenting: 3d, openssl client, DTLS 1.2" \
11708 -p "$P_PXY drop=8 delay=8 duplicate=8" \
11709 "$P_SRV dtls=1 debug_level=2 \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]11710 crt_file=$DATA_FILES_PATH/server7_int-ca.crt \
11711 key_file=$DATA_FILES_PATH/server7.key \
Xiaofei Bai8b5c3822021-12-02 08:43:35 +0000[diff] [blame]11712 hs_timeout=250-60000 mtu=512 force_version=dtls12" \
Manuel Pégourié-Gonnardc1eda672018-09-03 10:41:49 +0200[diff] [blame]11713 "$O_CLI -dtls1_2" \
11714 0 \
11715 -s "fragmenting handshake message"
Manuel Pégourié-Gonnard38110df2018-08-17 12:44:54 +0200[diff] [blame]11716
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11717# Tests for DTLS-SRTP (RFC 5764)
11718requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11719requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11720run_test "DTLS-SRTP all profiles supported" \
11721 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
11722 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
11723 0 \
11724 -s "found use_srtp extension" \
11725 -s "found srtp profile" \
11726 -s "selected srtp profile" \
11727 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11728 -s "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11729 -c "client hello, adding use_srtp extension" \
11730 -c "found use_srtp extension" \
11731 -c "found srtp profile" \
11732 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11733 -c "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]11734 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11735 -C "error"
11736
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]11737
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11738requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11739requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11740run_test "DTLS-SRTP server supports all profiles. Client supports one profile." \
11741 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11742 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=5 debug_level=3" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11743 0 \
11744 -s "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11745 -s "found srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_80" \
11746 -s "selected srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_80" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11747 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11748 -s "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11749 -c "client hello, adding use_srtp extension" \
11750 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11751 -c "found srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_80" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11752 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11753 -c "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]11754 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11755 -C "error"
11756
11757requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11758requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]11759run_test "DTLS-SRTP server supports one profile. Client supports all profiles." \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11760 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=6 debug_level=3" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11761 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
11762 0 \
11763 -s "found use_srtp extension" \
11764 -s "found srtp profile" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11765 -s "selected srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_32" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11766 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11767 -s "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11768 -c "client hello, adding use_srtp extension" \
11769 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11770 -c "found srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_32" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11771 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11772 -c "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]11773 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11774 -C "error"
11775
11776requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11777requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11778run_test "DTLS-SRTP server and Client support only one matching profile." \
11779 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
11780 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
11781 0 \
11782 -s "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11783 -s "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
11784 -s "selected srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11785 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11786 -s "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11787 -c "client hello, adding use_srtp extension" \
11788 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11789 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11790 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11791 -c "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]11792 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11793 -C "error"
11794
11795requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11796requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11797run_test "DTLS-SRTP server and Client support only one different profile." \
11798 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11799 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=6 debug_level=3" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11800 0 \
11801 -s "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]11802 -s "found srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_32" \
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11803 -S "selected srtp profile" \
11804 -S "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11805 -S "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11806 -c "client hello, adding use_srtp extension" \
11807 -C "found use_srtp extension" \
11808 -C "found srtp profile" \
11809 -C "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11810 -C "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11811 -C "error"
11812
11813requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11814requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11815run_test "DTLS-SRTP server doesn't support use_srtp extension." \
11816 "$P_SRV dtls=1 debug_level=3" \
11817 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
11818 0 \
11819 -s "found use_srtp extension" \
11820 -S "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11821 -S "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11822 -c "client hello, adding use_srtp extension" \
11823 -C "found use_srtp extension" \
11824 -C "found srtp profile" \
11825 -C "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11826 -C "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11827 -C "error"
11828
11829requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11830requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11831run_test "DTLS-SRTP all profiles supported. mki used" \
11832 "$P_SRV dtls=1 use_srtp=1 support_mki=1 debug_level=3" \
11833 "$P_CLI dtls=1 use_srtp=1 mki=542310ab34290481 debug_level=3" \
11834 0 \
11835 -s "found use_srtp extension" \
11836 -s "found srtp profile" \
11837 -s "selected srtp profile" \
11838 -s "server hello, adding use_srtp extension" \
11839 -s "dumping 'using mki' (8 bytes)" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11840 -s "DTLS-SRTP key material is"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11841 -c "client hello, adding use_srtp extension" \
11842 -c "found use_srtp extension" \
11843 -c "found srtp profile" \
11844 -c "selected srtp profile" \
11845 -c "dumping 'sending mki' (8 bytes)" \
11846 -c "dumping 'received mki' (8 bytes)" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11847 -c "DTLS-SRTP key material is"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]11848 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Johan Pascal20c7db32020-10-26 22:45:58 +0100[diff] [blame]11849 -g "find_in_both '^ *DTLS-SRTP mki value: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11850 -C "error"
11851
11852requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11853requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11854run_test "DTLS-SRTP all profiles supported. server doesn't support mki." \
11855 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
11856 "$P_CLI dtls=1 use_srtp=1 mki=542310ab34290481 debug_level=3" \
11857 0 \
11858 -s "found use_srtp extension" \
11859 -s "found srtp profile" \
11860 -s "selected srtp profile" \
11861 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11862 -s "DTLS-SRTP key material is"\
Johan Pascal5ef72d22020-10-28 17:05:47 +0100[diff] [blame]11863 -s "DTLS-SRTP no mki value negotiated"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11864 -S "dumping 'using mki' (8 bytes)" \
11865 -c "client hello, adding use_srtp extension" \
11866 -c "found use_srtp extension" \
11867 -c "found srtp profile" \
11868 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]11869 -c "DTLS-SRTP key material is"\
Johan Pascal5ef72d22020-10-28 17:05:47 +0100[diff] [blame]11870 -c "DTLS-SRTP no mki value negotiated"\
Johan Pascal9bc50b02020-09-24 12:01:13 +0200[diff] [blame]11871 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
Ron Eldorb4655392018-07-05 18:25:39 +0300[diff] [blame]11872 -c "dumping 'sending mki' (8 bytes)" \
11873 -C "dumping 'received mki' (8 bytes)" \
11874 -C "error"
11875
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]11876requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11877requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]11878run_test "DTLS-SRTP all profiles supported. openssl client." \
11879 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
11880 "$O_CLI -dtls -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
11881 0 \
11882 -s "found use_srtp extension" \
11883 -s "found srtp profile" \
11884 -s "selected srtp profile" \
11885 -s "server hello, adding use_srtp extension" \
11886 -s "DTLS-SRTP key material is"\
11887 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
11888 -c "SRTP Extension negotiated, profile=SRTP_AES128_CM_SHA1_80"
11889
11890requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11891requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]11892run_test "DTLS-SRTP server supports all profiles. Client supports all profiles, in different order. openssl client." \
11893 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
11894 "$O_CLI -dtls -use_srtp SRTP_AES128_CM_SHA1_32:SRTP_AES128_CM_SHA1_80 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
11895 0 \
11896 -s "found use_srtp extension" \
11897 -s "found srtp profile" \
11898 -s "selected srtp profile" \
11899 -s "server hello, adding use_srtp extension" \
11900 -s "DTLS-SRTP key material is"\
11901 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
11902 -c "SRTP Extension negotiated, profile=SRTP_AES128_CM_SHA1_32"
11903
11904requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11905requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]11906run_test "DTLS-SRTP server supports all profiles. Client supports one profile. openssl client." \
11907 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
11908 "$O_CLI -dtls -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
11909 0 \
11910 -s "found use_srtp extension" \
11911 -s "found srtp profile" \
11912 -s "selected srtp profile" \
11913 -s "server hello, adding use_srtp extension" \
11914 -s "DTLS-SRTP key material is"\
11915 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
11916 -c "SRTP Extension negotiated, profile=SRTP_AES128_CM_SHA1_32"
11917
11918requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11919requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]11920run_test "DTLS-SRTP server supports one profile. Client supports all profiles. openssl client." \
11921 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
11922 "$O_CLI -dtls -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
11923 0 \
11924 -s "found use_srtp extension" \
11925 -s "found srtp profile" \
11926 -s "selected srtp profile" \
11927 -s "server hello, adding use_srtp extension" \
11928 -s "DTLS-SRTP key material is"\
11929 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
11930 -c "SRTP Extension negotiated, profile=SRTP_AES128_CM_SHA1_32"
11931
11932requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11933requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]11934run_test "DTLS-SRTP server and Client support only one matching profile. openssl client." \
11935 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
11936 "$O_CLI -dtls -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
11937 0 \
11938 -s "found use_srtp extension" \
11939 -s "found srtp profile" \
11940 -s "selected srtp profile" \
11941 -s "server hello, adding use_srtp extension" \
11942 -s "DTLS-SRTP key material is"\
11943 -g "find_in_both '^ *Keying material: [0-9A-F]*$'"\
11944 -c "SRTP Extension negotiated, profile=SRTP_AES128_CM_SHA1_32"
11945
11946requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11947requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]11948run_test "DTLS-SRTP server and Client support only one different profile. openssl client." \
11949 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=1 debug_level=3" \
11950 "$O_CLI -dtls -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
11951 0 \
11952 -s "found use_srtp extension" \
11953 -s "found srtp profile" \
11954 -S "selected srtp profile" \
11955 -S "server hello, adding use_srtp extension" \
11956 -S "DTLS-SRTP key material is"\
11957 -C "SRTP Extension negotiated, profile"
11958
11959requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11960requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]11961run_test "DTLS-SRTP server doesn't support use_srtp extension. openssl client" \
11962 "$P_SRV dtls=1 debug_level=3" \
11963 "$O_CLI -dtls -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
11964 0 \
11965 -s "found use_srtp extension" \
11966 -S "server hello, adding use_srtp extension" \
11967 -S "DTLS-SRTP key material is"\
11968 -C "SRTP Extension negotiated, profile"
11969
11970requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11971requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]11972run_test "DTLS-SRTP all profiles supported. openssl server" \
11973 "$O_SRV -dtls -verify 0 -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
11974 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
11975 0 \
11976 -c "client hello, adding use_srtp extension" \
11977 -c "found use_srtp extension" \
11978 -c "found srtp profile" \
11979 -c "selected srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_80" \
11980 -c "DTLS-SRTP key material is"\
11981 -C "error"
11982
11983requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11984requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]11985run_test "DTLS-SRTP server supports all profiles. Client supports all profiles, in different order. openssl server." \
11986 "$O_SRV -dtls -verify 0 -use_srtp SRTP_AES128_CM_SHA1_32:SRTP_AES128_CM_SHA1_80 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
11987 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
11988 0 \
11989 -c "client hello, adding use_srtp extension" \
11990 -c "found use_srtp extension" \
11991 -c "found srtp profile" \
11992 -c "selected srtp profile" \
11993 -c "DTLS-SRTP key material is"\
11994 -C "error"
11995
11996requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]11997requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]11998run_test "DTLS-SRTP server supports all profiles. Client supports one profile. openssl server." \
11999 "$O_SRV -dtls -verify 0 -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
12000 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
12001 0 \
12002 -c "client hello, adding use_srtp extension" \
12003 -c "found use_srtp extension" \
12004 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
12005 -c "selected srtp profile" \
12006 -c "DTLS-SRTP key material is"\
12007 -C "error"
12008
12009requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12010requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]12011run_test "DTLS-SRTP server supports one profile. Client supports all profiles. openssl server." \
12012 "$O_SRV -dtls -verify 0 -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
12013 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
12014 0 \
12015 -c "client hello, adding use_srtp extension" \
12016 -c "found use_srtp extension" \
12017 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
12018 -c "selected srtp profile" \
12019 -c "DTLS-SRTP key material is"\
12020 -C "error"
12021
12022requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12023requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]12024run_test "DTLS-SRTP server and Client support only one matching profile. openssl server." \
12025 "$O_SRV -dtls -verify 0 -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
12026 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
12027 0 \
12028 -c "client hello, adding use_srtp extension" \
12029 -c "found use_srtp extension" \
12030 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
12031 -c "selected srtp profile" \
12032 -c "DTLS-SRTP key material is"\
12033 -C "error"
12034
12035requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12036requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]12037run_test "DTLS-SRTP server and Client support only one different profile. openssl server." \
12038 "$O_SRV -dtls -verify 0 -use_srtp SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
12039 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=6 debug_level=3" \
12040 0 \
12041 -c "client hello, adding use_srtp extension" \
12042 -C "found use_srtp extension" \
12043 -C "found srtp profile" \
12044 -C "selected srtp profile" \
12045 -C "DTLS-SRTP key material is"\
12046 -C "error"
12047
12048requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12049requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]12050run_test "DTLS-SRTP server doesn't support use_srtp extension. openssl server" \
12051 "$O_SRV -dtls" \
12052 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
12053 0 \
12054 -c "client hello, adding use_srtp extension" \
12055 -C "found use_srtp extension" \
12056 -C "found srtp profile" \
12057 -C "selected srtp profile" \
12058 -C "DTLS-SRTP key material is"\
12059 -C "error"
12060
12061requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12062requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
TRodziewicz4ca18aa2021-05-20 14:46:20 +0200[diff] [blame]12063run_test "DTLS-SRTP all profiles supported. server doesn't support mki. openssl server." \
12064 "$O_SRV -dtls -verify 0 -use_srtp SRTP_AES128_CM_SHA1_80:SRTP_AES128_CM_SHA1_32 -keymatexport 'EXTRACTOR-dtls_srtp' -keymatexportlen 60" \
12065 "$P_CLI dtls=1 use_srtp=1 mki=542310ab34290481 debug_level=3" \
12066 0 \
12067 -c "client hello, adding use_srtp extension" \
12068 -c "found use_srtp extension" \
12069 -c "found srtp profile" \
12070 -c "selected srtp profile" \
12071 -c "DTLS-SRTP key material is"\
12072 -c "DTLS-SRTP no mki value negotiated"\
12073 -c "dumping 'sending mki' (8 bytes)" \
12074 -C "dumping 'received mki' (8 bytes)" \
12075 -C "error"
12076
12077requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12078requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12079requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12080run_test "DTLS-SRTP all profiles supported. gnutls client." \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12081 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
12082 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12083 0 \
12084 -s "found use_srtp extension" \
12085 -s "found srtp profile" \
12086 -s "selected srtp profile" \
12087 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12088 -s "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12089 -c "SRTP profile: SRTP_AES128_CM_HMAC_SHA1_80"
12090
12091requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12092requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12093requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12094run_test "DTLS-SRTP server supports all profiles. Client supports all profiles, in different order. gnutls client." \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12095 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
12096 "$G_CLI -u --srtp-profiles=SRTP_NULL_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_80:SRTP_NULL_SHA1_32:SRTP_AES128_CM_HMAC_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12097 0 \
12098 -s "found use_srtp extension" \
12099 -s "found srtp profile" \
12100 -s "selected srtp profile" \
12101 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12102 -s "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12103 -c "SRTP profile: SRTP_NULL_HMAC_SHA1_80"
12104
12105requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12106requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12107requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12108run_test "DTLS-SRTP server supports all profiles. Client supports one profile. gnutls client." \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12109 "$P_SRV dtls=1 use_srtp=1 debug_level=3" \
12110 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12111 0 \
12112 -s "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12113 -s "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
12114 -s "selected srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12115 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12116 -s "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12117 -c "SRTP profile: SRTP_AES128_CM_HMAC_SHA1_32"
12118
12119requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12120requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12121requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12122run_test "DTLS-SRTP server supports one profile. Client supports all profiles. gnutls client." \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12123 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=6 debug_level=3" \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12124 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12125 0 \
12126 -s "found use_srtp extension" \
12127 -s "found srtp profile" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12128 -s "selected srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_32" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12129 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12130 -s "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12131 -c "SRTP profile: SRTP_NULL_SHA1_32"
12132
12133requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12134requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12135requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12136run_test "DTLS-SRTP server and Client support only one matching profile. gnutls client." \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12137 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
12138 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12139 0 \
12140 -s "found use_srtp extension" \
12141 -s "found srtp profile" \
12142 -s "selected srtp profile" \
12143 -s "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12144 -s "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12145 -c "SRTP profile: SRTP_AES128_CM_HMAC_SHA1_32"
12146
12147requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12148requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12149requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12150run_test "DTLS-SRTP server and Client support only one different profile. gnutls client." \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12151 "$P_SRV dtls=1 use_srtp=1 srtp_force_profile=1 debug_level=3" \
12152 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12153 0 \
12154 -s "found use_srtp extension" \
12155 -s "found srtp profile" \
12156 -S "selected srtp profile" \
12157 -S "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12158 -S "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12159 -C "SRTP profile:"
12160
12161requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12162requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12163requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12164run_test "DTLS-SRTP server doesn't support use_srtp extension. gnutls client" \
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12165 "$P_SRV dtls=1 debug_level=3" \
12166 "$G_CLI -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32 --insecure 127.0.0.1" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12167 0 \
12168 -s "found use_srtp extension" \
12169 -S "server hello, adding use_srtp extension" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12170 -S "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12171 -C "SRTP profile:"
12172
12173requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12174requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12175requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12176run_test "DTLS-SRTP all profiles supported. gnutls server" \
12177 "$G_SRV -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32" \
12178 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
12179 0 \
12180 -c "client hello, adding use_srtp extension" \
12181 -c "found use_srtp extension" \
12182 -c "found srtp profile" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12183 -c "selected srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_80" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12184 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12185 -C "error"
12186
12187requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12188requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12189requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12190run_test "DTLS-SRTP server supports all profiles. Client supports all profiles, in different order. gnutls server." \
12191 "$G_SRV -u --srtp-profiles=SRTP_NULL_SHA1_32:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_AES128_CM_HMAC_SHA1_80:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32" \
12192 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
12193 0 \
12194 -c "client hello, adding use_srtp extension" \
12195 -c "found use_srtp extension" \
12196 -c "found srtp profile" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12197 -c "selected srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_80" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12198 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12199 -C "error"
12200
12201requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12202requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12203requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12204run_test "DTLS-SRTP server supports all profiles. Client supports one profile. gnutls server." \
12205 "$G_SRV -u --srtp-profiles=SRTP_NULL_SHA1_32:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_AES128_CM_HMAC_SHA1_80:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32" \
12206 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
12207 0 \
12208 -c "client hello, adding use_srtp extension" \
12209 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12210 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12211 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12212 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12213 -C "error"
12214
12215requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12216requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12217requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12218run_test "DTLS-SRTP server supports one profile. Client supports all profiles. gnutls server." \
12219 "$G_SRV -u --srtp-profiles=SRTP_NULL_HMAC_SHA1_80" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12220 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12221 0 \
12222 -c "client hello, adding use_srtp extension" \
12223 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12224 -c "found srtp profile: MBEDTLS_TLS_SRTP_NULL_HMAC_SHA1_80" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12225 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12226 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12227 -C "error"
12228
12229requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12230requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12231requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12232run_test "DTLS-SRTP server and Client support only one matching profile. gnutls server." \
12233 "$G_SRV -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_32" \
12234 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=2 debug_level=3" \
12235 0 \
12236 -c "client hello, adding use_srtp extension" \
12237 -c "found use_srtp extension" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12238 -c "found srtp profile: MBEDTLS_TLS_SRTP_AES128_CM_HMAC_SHA1_32" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12239 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12240 -c "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12241 -C "error"
12242
12243requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12244requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12245requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12246run_test "DTLS-SRTP server and Client support only one different profile. gnutls server." \
12247 "$G_SRV -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_32" \
Johan Pascal43f94902020-09-22 12:25:52 +0200[diff] [blame]12248 "$P_CLI dtls=1 use_srtp=1 srtp_force_profile=6 debug_level=3" \
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12249 0 \
12250 -c "client hello, adding use_srtp extension" \
12251 -C "found use_srtp extension" \
12252 -C "found srtp profile" \
12253 -C "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12254 -C "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12255 -C "error"
12256
12257requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12258requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12259requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12260run_test "DTLS-SRTP server doesn't support use_srtp extension. gnutls server" \
12261 "$G_SRV -u" \
12262 "$P_CLI dtls=1 use_srtp=1 debug_level=3" \
12263 0 \
12264 -c "client hello, adding use_srtp extension" \
12265 -C "found use_srtp extension" \
12266 -C "found srtp profile" \
12267 -C "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12268 -C "DTLS-SRTP key material is"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12269 -C "error"
12270
12271requires_config_enabled MBEDTLS_SSL_DTLS_SRTP
Ron Eldor5d991c92019-01-15 18:54:03 +0200[diff] [blame]12272requires_gnutls
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12273requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12274run_test "DTLS-SRTP all profiles supported. mki used. gnutls server." \
12275 "$G_SRV -u --srtp-profiles=SRTP_AES128_CM_HMAC_SHA1_80:SRTP_AES128_CM_HMAC_SHA1_32:SRTP_NULL_HMAC_SHA1_80:SRTP_NULL_SHA1_32" \
12276 "$P_CLI dtls=1 use_srtp=1 mki=542310ab34290481 debug_level=3" \
12277 0 \
12278 -c "client hello, adding use_srtp extension" \
12279 -c "found use_srtp extension" \
12280 -c "found srtp profile" \
12281 -c "selected srtp profile" \
Johan Pascal9bc97ca2020-09-21 23:44:45 +0200[diff] [blame]12282 -c "DTLS-SRTP key material is"\
Johan Pascal20c7db32020-10-26 22:45:58 +0100[diff] [blame]12283 -c "DTLS-SRTP mki value:"\
Ron Eldor3c6a44b2018-07-10 10:32:10 +0300[diff] [blame]12284 -c "dumping 'sending mki' (8 bytes)" \
12285 -c "dumping 'received mki' (8 bytes)" \
12286 -C "error"
12287
Manuel Pégourié-Gonnard64dffc52014-09-02 13:39:16 +0200[diff] [blame]12288# Tests for specific things with "unreliable" UDP connection
12289
12290not_with_valgrind # spurious resend due to timeout
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12291requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard64dffc52014-09-02 13:39:16 +0200[diff] [blame]12292run_test "DTLS proxy: reference" \
12293 -p "$P_PXY" \
Manuel Pégourié-Gonnardb6929892019-09-09 11:14:37 +0200[diff] [blame]12294 "$P_SRV dtls=1 debug_level=2 hs_timeout=10000-20000" \
12295 "$P_CLI dtls=1 debug_level=2 hs_timeout=10000-20000" \
Manuel Pégourié-Gonnard64dffc52014-09-02 13:39:16 +0200[diff] [blame]12296 0 \
12297 -C "replayed record" \
12298 -S "replayed record" \
Hanno Beckerb2a86c32019-07-19 15:43:09 +0100[diff] [blame]12299 -C "Buffer record from epoch" \
12300 -S "Buffer record from epoch" \
12301 -C "ssl_buffer_message" \
12302 -S "ssl_buffer_message" \
Manuel Pégourié-Gonnarda7756172014-08-31 18:37:01 +0200[diff] [blame]12303 -C "discarding invalid record" \
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]12304 -S "discarding invalid record" \
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]12305 -S "resend" \
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]12306 -s "Extra-header:" \
Manuel Pégourié-Gonnardbe9eb872014-09-05 17:45:19 +0200[diff] [blame]12307 -c "HTTP/1.0 200 OK"
12308
12309not_with_valgrind # spurious resend due to timeout
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12310requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]12311run_test "DTLS proxy: duplicate every packet" \
12312 -p "$P_PXY duplicate=1" \
Manuel Pégourié-Gonnardb6929892019-09-09 11:14:37 +0200[diff] [blame]12313 "$P_SRV dtls=1 dgram_packing=0 debug_level=2 hs_timeout=10000-20000" \
12314 "$P_CLI dtls=1 dgram_packing=0 debug_level=2 hs_timeout=10000-20000" \
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]12315 0 \
12316 -c "replayed record" \
12317 -s "replayed record" \
12318 -c "record from another epoch" \
12319 -s "record from another epoch" \
12320 -S "resend" \
12321 -s "Extra-header:" \
12322 -c "HTTP/1.0 200 OK"
12323
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12324requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard990f9e42014-09-06 12:27:02 +0200[diff] [blame]12325run_test "DTLS proxy: duplicate every packet, server anti-replay off" \
12326 -p "$P_PXY duplicate=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]12327 "$P_SRV dtls=1 dgram_packing=0 debug_level=2 anti_replay=0" \
12328 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
Manuel Pégourié-Gonnard63eca932014-09-08 16:39:08 +0200[diff] [blame]12329 0 \
12330 -c "replayed record" \
12331 -S "replayed record" \
12332 -c "record from another epoch" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12333 -s "record from another epoch" \
12334 -c "resend" \
12335 -s "resend" \
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]12336 -s "Extra-header:" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12337 -c "HTTP/1.0 200 OK"
12338
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12339requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]12340run_test "DTLS proxy: multiple records in same datagram" \
12341 -p "$P_PXY pack=50" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]12342 "$P_SRV dtls=1 dgram_packing=0 debug_level=2" \
12343 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
Manuel Pégourié-Gonnard63eca932014-09-08 16:39:08 +0200[diff] [blame]12344 0 \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12345 -c "next record in same datagram" \
12346 -s "next record in same datagram"
12347
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12348requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12349run_test "DTLS proxy: multiple records in same datagram, duplicate every packet" \
12350 -p "$P_PXY pack=50 duplicate=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]12351 "$P_SRV dtls=1 dgram_packing=0 debug_level=2" \
12352 "$P_CLI dtls=1 dgram_packing=0 debug_level=2" \
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]12353 0 \
12354 -c "next record in same datagram" \
12355 -s "next record in same datagram"
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12356
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12357requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard63eca932014-09-08 16:39:08 +0200[diff] [blame]12358run_test "DTLS proxy: inject invalid AD record, default badmac_limit" \
12359 -p "$P_PXY bad_ad=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]12360 "$P_SRV dtls=1 dgram_packing=0 debug_level=1" \
12361 "$P_CLI dtls=1 dgram_packing=0 debug_level=1 read_timeout=100" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12362 0 \
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]12363 -c "discarding invalid record (mac)" \
12364 -s "discarding invalid record (mac)" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12365 -s "Extra-header:" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12366 -c "HTTP/1.0 200 OK" \
12367 -S "too many records with bad MAC" \
12368 -S "Verification of the message MAC failed"
12369
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12370requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12371run_test "DTLS proxy: inject invalid AD record, badmac_limit 1" \
12372 -p "$P_PXY bad_ad=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]12373 "$P_SRV dtls=1 dgram_packing=0 debug_level=1 badmac_limit=1" \
12374 "$P_CLI dtls=1 dgram_packing=0 debug_level=1 read_timeout=100" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12375 1 \
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]12376 -C "discarding invalid record (mac)" \
12377 -S "discarding invalid record (mac)" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12378 -S "Extra-header:" \
12379 -C "HTTP/1.0 200 OK" \
12380 -s "too many records with bad MAC" \
12381 -s "Verification of the message MAC failed"
12382
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12383requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12384run_test "DTLS proxy: inject invalid AD record, badmac_limit 2" \
12385 -p "$P_PXY bad_ad=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]12386 "$P_SRV dtls=1 dgram_packing=0 debug_level=1 badmac_limit=2" \
12387 "$P_CLI dtls=1 dgram_packing=0 debug_level=1 read_timeout=100" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12388 0 \
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]12389 -c "discarding invalid record (mac)" \
12390 -s "discarding invalid record (mac)" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12391 -s "Extra-header:" \
12392 -c "HTTP/1.0 200 OK" \
12393 -S "too many records with bad MAC" \
12394 -S "Verification of the message MAC failed"
12395
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12396requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12397run_test "DTLS proxy: inject invalid AD record, badmac_limit 2, exchanges 2"\
12398 -p "$P_PXY bad_ad=1" \
Hanno Becker1c9a24c2018-08-14 13:46:33 +0100[diff] [blame]12399 "$P_SRV dtls=1 dgram_packing=0 debug_level=1 badmac_limit=2 exchanges=2" \
12400 "$P_CLI dtls=1 dgram_packing=0 debug_level=1 read_timeout=100 exchanges=2" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12401 1 \
Manuel Pégourié-Gonnard74a13782014-10-14 22:34:08 +0200[diff] [blame]12402 -c "discarding invalid record (mac)" \
12403 -s "discarding invalid record (mac)" \
Manuel Pégourié-Gonnarde698f592014-10-14 19:36:36 +0200[diff] [blame]12404 -s "Extra-header:" \
12405 -c "HTTP/1.0 200 OK" \
12406 -s "too many records with bad MAC" \
12407 -s "Verification of the message MAC failed"
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12408
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12409requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12410run_test "DTLS proxy: delay ChangeCipherSpec" \
12411 -p "$P_PXY delay_ccs=1" \
Hanno Beckerc4305232018-08-14 13:41:21 +0100[diff] [blame]12412 "$P_SRV dtls=1 debug_level=1 dgram_packing=0" \
12413 "$P_CLI dtls=1 debug_level=1 dgram_packing=0" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12414 0 \
Manuel Pégourié-Gonnard246c13a2014-09-24 13:56:09 +0200[diff] [blame]12415 -c "record from another epoch" \
12416 -s "record from another epoch" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12417 -s "Extra-header:" \
12418 -c "HTTP/1.0 200 OK"
12419
Hanno Beckeraa5d0c42018-08-16 13:15:19 +0100[diff] [blame]12420# Tests for reordering support with DTLS
12421
Gilles Peskine6f160ca2022-03-14 18:21:24 +0100[diff] [blame]12422requires_certificate_authentication
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12423requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12424run_test "DTLS reordering: Buffer out-of-order handshake message on client" \
12425 -p "$P_PXY delay_srv=ServerHello" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12426 "$P_SRV dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
12427 hs_timeout=2500-60000" \
12428 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
12429 hs_timeout=2500-60000" \
Hanno Beckere3842212018-08-16 15:28:59 +0100[diff] [blame]12430 0 \
12431 -c "Buffering HS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12432 -c "Next handshake message has been buffered - load"\
12433 -S "Buffering HS message" \
12434 -S "Next handshake message has been buffered - load"\
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12435 -C "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12436 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12437 -S "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12438 -S "Remember CCS message"
Hanno Beckere3842212018-08-16 15:28:59 +0100[diff] [blame]12439
Gilles Peskine6f160ca2022-03-14 18:21:24 +0100[diff] [blame]12440requires_certificate_authentication
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12441requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckerdc1e9502018-08-28 16:02:33 +0100[diff] [blame]12442run_test "DTLS reordering: Buffer out-of-order handshake message fragment on client" \
12443 -p "$P_PXY delay_srv=ServerHello" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12444 "$P_SRV mtu=512 dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
12445 hs_timeout=2500-60000" \
12446 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
12447 hs_timeout=2500-60000" \
Hanno Beckerdc1e9502018-08-28 16:02:33 +0100[diff] [blame]12448 0 \
12449 -c "Buffering HS message" \
12450 -c "found fragmented DTLS handshake message"\
12451 -c "Next handshake message 1 not or only partially bufffered" \
12452 -c "Next handshake message has been buffered - load"\
12453 -S "Buffering HS message" \
12454 -S "Next handshake message has been buffered - load"\
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12455 -C "Injecting buffered CCS message" \
Hanno Beckerdc1e9502018-08-28 16:02:33 +0100[diff] [blame]12456 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12457 -S "Injecting buffered CCS message" \
Hanno Beckeraa5d0c42018-08-16 13:15:19 +0100[diff] [blame]12458 -S "Remember CCS message"
12459
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12460# The client buffers the ServerKeyExchange before receiving the fragmented
12461# Certificate message; at the time of writing, together these are aroudn 1200b
12462# in size, so that the bound below ensures that the certificate can be reassembled
12463# while keeping the ServerKeyExchange.
Gilles Peskine6f160ca2022-03-14 18:21:24 +0100[diff] [blame]12464requires_certificate_authentication
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12465requires_config_value_at_least "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 1300
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12466requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12467run_test "DTLS reordering: Buffer out-of-order hs msg before reassembling next" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]12468 -p "$P_PXY delay_srv=Certificate delay_srv=Certificate" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12469 "$P_SRV mtu=512 dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
12470 hs_timeout=2500-60000" \
12471 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
12472 hs_timeout=2500-60000" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]12473 0 \
12474 -c "Buffering HS message" \
12475 -c "Next handshake message has been buffered - load"\
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12476 -C "attempt to make space by freeing buffered messages" \
12477 -S "Buffering HS message" \
12478 -S "Next handshake message has been buffered - load"\
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12479 -C "Injecting buffered CCS message" \
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12480 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12481 -S "Injecting buffered CCS message" \
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12482 -S "Remember CCS message"
12483
12484# The size constraints ensure that the delayed certificate message can't
12485# be reassembled while keeping the ServerKeyExchange message, but it can
12486# when dropping it first.
Gilles Peskine6f160ca2022-03-14 18:21:24 +0100[diff] [blame]12487requires_certificate_authentication
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12488requires_config_value_at_least "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 900
12489requires_config_value_at_most "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 1299
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12490requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12491run_test "DTLS reordering: Buffer out-of-order hs msg before reassembling next, free buffered msg" \
12492 -p "$P_PXY delay_srv=Certificate delay_srv=Certificate" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12493 "$P_SRV mtu=512 dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
12494 hs_timeout=2500-60000" \
12495 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
12496 hs_timeout=2500-60000" \
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12497 0 \
12498 -c "Buffering HS message" \
12499 -c "attempt to make space by freeing buffered future messages" \
12500 -c "Enough space available after freeing buffered HS messages" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]12501 -S "Buffering HS message" \
12502 -S "Next handshake message has been buffered - load"\
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12503 -C "Injecting buffered CCS message" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]12504 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12505 -S "Injecting buffered CCS message" \
Hanno Beckere3567052018-08-21 16:50:43 +0100[diff] [blame]12506 -S "Remember CCS message"
12507
Gilles Peskine6f160ca2022-03-14 18:21:24 +0100[diff] [blame]12508requires_certificate_authentication
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12509requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12510run_test "DTLS reordering: Buffer out-of-order handshake message on server" \
12511 -p "$P_PXY delay_cli=Certificate" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12512 "$P_SRV dgram_packing=0 auth_mode=required cookies=0 dtls=1 debug_level=2 \
12513 hs_timeout=2500-60000" \
12514 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
12515 hs_timeout=2500-60000" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12516 0 \
12517 -C "Buffering HS message" \
12518 -C "Next handshake message has been buffered - load"\
12519 -s "Buffering HS message" \
12520 -s "Next handshake message has been buffered - load" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12521 -C "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12522 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12523 -S "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12524 -S "Remember CCS message"
12525
Gilles Peskine6f160ca2022-03-14 18:21:24 +0100[diff] [blame]12526requires_certificate_authentication
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12527requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]12528requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12529run_test "DTLS reordering: Buffer out-of-order CCS message on client"\
12530 -p "$P_PXY delay_srv=NewSessionTicket" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12531 "$P_SRV dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
12532 hs_timeout=2500-60000" \
12533 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
12534 hs_timeout=2500-60000" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12535 0 \
12536 -C "Buffering HS message" \
12537 -C "Next handshake message has been buffered - load"\
12538 -S "Buffering HS message" \
12539 -S "Next handshake message has been buffered - load" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12540 -c "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12541 -c "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12542 -S "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12543 -S "Remember CCS message"
12544
Gilles Peskine6f160ca2022-03-14 18:21:24 +0100[diff] [blame]12545requires_certificate_authentication
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12546requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12547run_test "DTLS reordering: Buffer out-of-order CCS message on server"\
12548 -p "$P_PXY delay_cli=ClientKeyExchange" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12549 "$P_SRV dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
12550 hs_timeout=2500-60000" \
12551 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
12552 hs_timeout=2500-60000" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12553 0 \
12554 -C "Buffering HS message" \
12555 -C "Next handshake message has been buffered - load"\
12556 -S "Buffering HS message" \
12557 -S "Next handshake message has been buffered - load" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12558 -C "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12559 -C "Remember CCS message" \
Hanno Becker39b8bc92018-08-28 17:17:13 +0100[diff] [blame]12560 -s "Injecting buffered CCS message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12561 -s "Remember CCS message"
12562
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12563requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12564run_test "DTLS reordering: Buffer encrypted Finished message" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12565 -p "$P_PXY delay_ccs=1" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12566 "$P_SRV dgram_packing=0 cookies=0 dtls=1 debug_level=2 \
12567 hs_timeout=2500-60000" \
12568 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 \
12569 hs_timeout=2500-60000" \
Hanno Beckerb34149c2018-08-16 15:29:06 +0100[diff] [blame]12570 0 \
12571 -s "Buffer record from epoch 1" \
Hanno Becker56cdfd12018-08-17 13:42:15 +0100[diff] [blame]12572 -s "Found buffered record from current epoch - load" \
12573 -c "Buffer record from epoch 1" \
12574 -c "Found buffered record from current epoch - load"
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12575
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12576# In this test, both the fragmented NewSessionTicket and the ChangeCipherSpec
12577# from the server are delayed, so that the encrypted Finished message
12578# is received and buffered. When the fragmented NewSessionTicket comes
12579# in afterwards, the encrypted Finished message must be freed in order
12580# to make space for the NewSessionTicket to be reassembled.
12581# This works only in very particular circumstances:
12582# - MBEDTLS_SSL_DTLS_MAX_BUFFERING must be large enough to allow buffering
12583# of the NewSessionTicket, but small enough to also allow buffering of
12584# the encrypted Finished message.
12585# - The MTU setting on the server must be so small that the NewSessionTicket
12586# needs to be fragmented.
12587# - All messages sent by the server must be small enough to be either sent
12588# without fragmentation or be reassembled within the bounds of
12589# MBEDTLS_SSL_DTLS_MAX_BUFFERING. Achieve this by testing with a PSK-based
12590# handshake, omitting CRTs.
Manuel Pégourié-Gonnardeef4c752019-05-28 10:21:30 +0200[diff] [blame]12591requires_config_value_at_least "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 190
12592requires_config_value_at_most "MBEDTLS_SSL_DTLS_MAX_BUFFERING" 230
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12593run_test "DTLS reordering: Buffer encrypted Finished message, drop for fragmented NewSessionTicket" \
12594 -p "$P_PXY delay_srv=NewSessionTicket delay_srv=NewSessionTicket delay_ccs=1" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12595 "$P_SRV mtu=140 response_size=90 dgram_packing=0 psk=73776f726466697368 psk_identity=foo cookies=0 dtls=1 debug_level=2" \
12596 "$P_CLI dgram_packing=0 dtls=1 debug_level=2 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8 psk=73776f726466697368 psk_identity=foo" \
Hanno Beckera1adcca2018-08-24 14:41:07 +0100[diff] [blame]12597 0 \
12598 -s "Buffer record from epoch 1" \
12599 -s "Found buffered record from current epoch - load" \
12600 -c "Buffer record from epoch 1" \
12601 -C "Found buffered record from current epoch - load" \
12602 -c "Enough space available after freeing future epoch record"
12603
Manuel Pégourié-Gonnarda0719722014-09-20 12:46:27 +0200[diff] [blame]12604# Tests for "randomly unreliable connection": try a variety of flows and peers
12605
12606client_needs_more_time 2
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12607run_test "DTLS proxy: 3d (drop, delay, duplicate), \"short\" PSK handshake" \
12608 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Gilles Peskine4c1347c2024-09-07 19:50:46 +0200[diff] [blame]12609 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12610 psk=73776f726466697368" \
12611 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=73776f726466697368 \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12612 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
12613 0 \
12614 -s "Extra-header:" \
12615 -c "HTTP/1.0 200 OK"
12616
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12617client_needs_more_time 2
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12618run_test "DTLS proxy: 3d, \"short\" RSA handshake" \
12619 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12620 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none" \
12621 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12622 force_ciphersuite=TLS-RSA-WITH-AES-128-CBC-SHA" \
12623 0 \
12624 -s "Extra-header:" \
12625 -c "HTTP/1.0 200 OK"
12626
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12627client_needs_more_time 2
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12628requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12629run_test "DTLS proxy: 3d, \"short\" (no ticket, no cli_auth) FS handshake" \
12630 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12631 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none" \
12632 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0" \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12633 0 \
12634 -s "Extra-header:" \
12635 -c "HTTP/1.0 200 OK"
12636
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12637client_needs_more_time 2
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12638requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12639run_test "DTLS proxy: 3d, FS, client auth" \
12640 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12641 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=required" \
12642 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0" \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12643 0 \
12644 -s "Extra-header:" \
12645 -c "HTTP/1.0 200 OK"
12646
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12647client_needs_more_time 2
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12648requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]12649requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12650run_test "DTLS proxy: 3d, FS, ticket" \
12651 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12652 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=1 auth_mode=none" \
12653 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=1" \
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12654 0 \
12655 -s "Extra-header:" \
12656 -c "HTTP/1.0 200 OK"
12657
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12658client_needs_more_time 2
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12659requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]12660requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard18e519a2014-09-24 19:09:17 +0200[diff] [blame]12661run_test "DTLS proxy: 3d, max handshake (FS, ticket + client auth)" \
12662 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12663 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=1 auth_mode=required" \
12664 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=1" \
Manuel Pégourié-Gonnard825a49e2014-09-23 11:00:37 +0200[diff] [blame]12665 0 \
12666 -s "Extra-header:" \
12667 -c "HTTP/1.0 200 OK"
12668
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12669client_needs_more_time 2
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12670requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Norbert Fabritiusc93fc862023-04-12 09:50:30 +0200[diff] [blame]12671requires_config_enabled MBEDTLS_SSL_SESSION_TICKETS
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12672run_test "DTLS proxy: 3d, max handshake, nbio" \
12673 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12674 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 nbio=2 tickets=1 \
Manuel Pégourié-Gonnard37a4de22014-10-01 16:38:03 +0200[diff] [blame]12675 auth_mode=required" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12676 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 nbio=2 tickets=1" \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12677 0 \
12678 -s "Extra-header:" \
12679 -c "HTTP/1.0 200 OK"
12680
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12681client_needs_more_time 4
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]12682requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard7a26d732014-10-02 14:50:46 +0200[diff] [blame]12683run_test "DTLS proxy: 3d, min handshake, resumption" \
12684 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12685 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12686 psk=73776f726466697368 debug_level=3" \
12687 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=73776f726466697368 \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]12688 debug_level=3 reconnect=1 skip_close_notify=1 read_timeout=1000 max_resend=10 \
Manuel Pégourié-Gonnard7a26d732014-10-02 14:50:46 +0200[diff] [blame]12689 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
12690 0 \
12691 -s "a session has been resumed" \
12692 -c "a session has been resumed" \
12693 -s "Extra-header:" \
12694 -c "HTTP/1.0 200 OK"
12695
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12696client_needs_more_time 4
Gilles Peskine2fe796f2022-02-25 19:51:52 +0100[diff] [blame]12697requires_config_enabled MBEDTLS_SSL_CACHE_C
Manuel Pégourié-Gonnard85beb302014-10-02 17:59:19 +0200[diff] [blame]12698run_test "DTLS proxy: 3d, min handshake, resumption, nbio" \
12699 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12700 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12701 psk=73776f726466697368 debug_level=3 nbio=2" \
12702 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=73776f726466697368 \
Manuel Pégourié-Gonnard56941fe2020-02-17 11:04:33 +0100[diff] [blame]12703 debug_level=3 reconnect=1 skip_close_notify=1 read_timeout=1000 max_resend=10 \
Manuel Pégourié-Gonnard85beb302014-10-02 17:59:19 +0200[diff] [blame]12704 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8 nbio=2" \
12705 0 \
12706 -s "a session has been resumed" \
12707 -c "a session has been resumed" \
12708 -s "Extra-header:" \
12709 -c "HTTP/1.0 200 OK"
12710
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12711client_needs_more_time 4
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]12712requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12713run_test "DTLS proxy: 3d, min handshake, client-initiated renego" \
Manuel Pégourié-Gonnard1b753f12014-09-25 16:09:36 +0200[diff] [blame]12714 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12715 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12716 psk=73776f726466697368 renegotiation=1 debug_level=2" \
12717 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=73776f726466697368 \
Manuel Pégourié-Gonnard37a4de22014-10-01 16:38:03 +0200[diff] [blame]12718 renegotiate=1 debug_level=2 \
Manuel Pégourié-Gonnard1b753f12014-09-25 16:09:36 +0200[diff] [blame]12719 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
12720 0 \
12721 -c "=> renegotiate" \
12722 -s "=> renegotiate" \
12723 -s "Extra-header:" \
12724 -c "HTTP/1.0 200 OK"
12725
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12726client_needs_more_time 4
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]12727requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12728run_test "DTLS proxy: 3d, min handshake, client-initiated renego, nbio" \
12729 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12730 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12731 psk=73776f726466697368 renegotiation=1 debug_level=2" \
12732 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=73776f726466697368 \
Manuel Pégourié-Gonnard37a4de22014-10-01 16:38:03 +0200[diff] [blame]12733 renegotiate=1 debug_level=2 \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12734 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
12735 0 \
12736 -c "=> renegotiate" \
12737 -s "=> renegotiate" \
12738 -s "Extra-header:" \
12739 -c "HTTP/1.0 200 OK"
12740
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12741client_needs_more_time 4
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]12742requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]12743run_test "DTLS proxy: 3d, min handshake, server-initiated renego" \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]12744 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12745 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12746 psk=73776f726466697368 renegotiate=1 renegotiation=1 exchanges=4 \
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]12747 debug_level=2" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12748 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=73776f726466697368 \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]12749 renegotiation=1 exchanges=4 debug_level=2 \
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]12750 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
12751 0 \
12752 -c "=> renegotiate" \
12753 -s "=> renegotiate" \
12754 -s "Extra-header:" \
12755 -c "HTTP/1.0 200 OK"
12756
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12757client_needs_more_time 4
Hanno Becker6a243642017-10-12 15:18:45 +0100[diff] [blame]12758requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]12759run_test "DTLS proxy: 3d, min handshake, server-initiated renego, nbio" \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]12760 -p "$P_PXY drop=5 delay=5 duplicate=5" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12761 "$P_SRV dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 auth_mode=none \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12762 psk=73776f726466697368 renegotiate=1 renegotiation=1 exchanges=4 \
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]12763 debug_level=2 nbio=2" \
Gilles Peskine02cd7162024-04-29 16:09:52 +0200[diff] [blame]12764 "$P_CLI dtls=1 dgram_packing=0 hs_timeout=500-10000 tickets=0 psk=73776f726466697368 \
Manuel Pégourié-Gonnarda6ace042014-10-15 12:44:41 +0200[diff] [blame]12765 renegotiation=1 exchanges=4 debug_level=2 nbio=2 \
Manuel Pégourié-Gonnardba958b82014-10-09 16:13:44 +0200[diff] [blame]12766 force_ciphersuite=TLS-PSK-WITH-AES-128-CCM-8" \
12767 0 \
12768 -c "=> renegotiate" \
12769 -s "=> renegotiate" \
12770 -s "Extra-header:" \
12771 -c "HTTP/1.0 200 OK"
12772
Zhangsen Wang87a9c862022-06-28 06:10:35 +0000[diff] [blame]12773## The three tests below require 1.1.1a or higher version of openssl, otherwise
12774## it might trigger a bug due to openssl (https://github.com/openssl/openssl/issues/6902)
12775## Besides, openssl should use dtls1_2 or dtls, otherwise it will cause "SSL alert number 70" error
12776requires_openssl_next
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12777client_needs_more_time 6
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]12778not_with_valgrind # risk of non-mbedtls peer timing out
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12779requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]12780run_test "DTLS proxy: 3d, openssl server" \
Manuel Pégourié-Gonnardd0fd1da2014-09-25 17:00:27 +0200[diff] [blame]12781 -p "$P_PXY drop=5 delay=5 duplicate=5 protect_hvr=1" \
Valerio Setti2f8eb622023-03-16 13:04:44 +0100[diff] [blame]12782 "$O_NEXT_SRV -dtls1_2 -mtu 2048" \
12783 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000 tickets=0" \
Manuel Pégourié-Gonnardd0fd1da2014-09-25 17:00:27 +0200[diff] [blame]12784 0 \
Manuel Pégourié-Gonnardd0fd1da2014-09-25 17:00:27 +0200[diff] [blame]12785 -c "HTTP/1.0 200 OK"
12786
Zhangsen Wang87a9c862022-06-28 06:10:35 +0000[diff] [blame]12787requires_openssl_next
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12788client_needs_more_time 8
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]12789not_with_valgrind # risk of non-mbedtls peer timing out
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12790requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]12791run_test "DTLS proxy: 3d, openssl server, fragmentation" \
12792 -p "$P_PXY drop=5 delay=5 duplicate=5 protect_hvr=1" \
Zhangsen Wang87a9c862022-06-28 06:10:35 +0000[diff] [blame]12793 "$O_NEXT_SRV -dtls1_2 -mtu 768" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12794 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000 tickets=0" \
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]12795 0 \
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]12796 -c "HTTP/1.0 200 OK"
12797
Zhangsen Wang87a9c862022-06-28 06:10:35 +0000[diff] [blame]12798requires_openssl_next
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12799client_needs_more_time 8
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]12800not_with_valgrind # risk of non-mbedtls peer timing out
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12801requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12802run_test "DTLS proxy: 3d, openssl server, fragmentation, nbio" \
12803 -p "$P_PXY drop=5 delay=5 duplicate=5 protect_hvr=1" \
Zhangsen Wang87a9c862022-06-28 06:10:35 +0000[diff] [blame]12804 "$O_NEXT_SRV -dtls1_2 -mtu 768" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12805 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000 nbio=2 tickets=0" \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12806 0 \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12807 -c "HTTP/1.0 200 OK"
12808
Manuel Pégourié-Gonnard96999962015-02-17 16:02:37 +0000[diff] [blame]12809requires_gnutls
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12810client_needs_more_time 6
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]12811not_with_valgrind # risk of non-mbedtls peer timing out
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12812requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]12813run_test "DTLS proxy: 3d, gnutls server" \
12814 -p "$P_PXY drop=5 delay=5 duplicate=5" \
12815 "$G_SRV -u --mtu 2048 -a" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12816 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000" \
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]12817 0 \
12818 -s "Extra-header:" \
12819 -c "Extra-header:"
12820
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]12821requires_gnutls_next
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12822client_needs_more_time 8
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]12823not_with_valgrind # risk of non-mbedtls peer timing out
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12824requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]12825run_test "DTLS proxy: 3d, gnutls server, fragmentation" \
12826 -p "$P_PXY drop=5 delay=5 duplicate=5" \
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]12827 "$G_NEXT_SRV -u --mtu 512" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12828 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000" \
Manuel Pégourié-Gonnard9590e0a2014-09-26 16:27:59 +0200[diff] [blame]12829 0 \
12830 -s "Extra-header:" \
12831 -c "Extra-header:"
12832
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]12833requires_gnutls_next
Janos Follath74537a62016-09-02 13:45:28 +0100[diff] [blame]12834client_needs_more_time 8
Manuel Pégourié-Gonnardd68434e2015-08-31 12:48:22 +0200[diff] [blame]12835not_with_valgrind # risk of non-mbedtls peer timing out
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12836requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12837run_test "DTLS proxy: 3d, gnutls server, fragmentation, nbio" \
12838 -p "$P_PXY drop=5 delay=5 duplicate=5" \
k-stachowiak17a38d32019-02-18 15:29:56 +0100[diff] [blame]12839 "$G_NEXT_SRV -u --mtu 512" \
Andrzej Kurek948fe802018-10-05 15:42:44 -0400[diff] [blame]12840 "$P_CLI dgram_packing=0 dtls=1 hs_timeout=500-60000 nbio=2" \
Manuel Pégourié-Gonnard6093d812014-09-29 17:52:57 +0200[diff] [blame]12841 0 \
12842 -s "Extra-header:" \
12843 -c "Extra-header:"
12844
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]12845requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Ron Eldorf75e2522019-05-14 20:38:49 +0300[diff] [blame]12846run_test "export keys functionality" \
12847 "$P_SRV eap_tls=1 debug_level=3" \
Ronald Cronf95d1692023-03-14 17:19:42 +0100[diff] [blame]12848 "$P_CLI force_version=tls12 eap_tls=1 debug_level=3" \
Ron Eldorf75e2522019-05-14 20:38:49 +0300[diff] [blame]12849 0 \
Ron Eldor65d8c262019-06-04 13:05:36 +0300[diff] [blame]12850 -c "EAP-TLS key material is:"\
12851 -s "EAP-TLS key material is:"\
12852 -c "EAP-TLS IV is:" \
12853 -s "EAP-TLS IV is:"
Ron Eldorf75e2522019-05-14 20:38:49 +0300[diff] [blame]12854
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]12855# openssl feature tests: check if tls1.3 exists.
12856requires_openssl_tls1_3
Jerry Yuc502dff2021-12-03 10:04:08 +0800[diff] [blame]12857run_test "TLS 1.3: Test openssl tls1_3 feature" \
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]12858 "$O_NEXT_SRV -tls1_3 -msg" \
12859 "$O_NEXT_CLI -tls1_3 -msg" \
12860 0 \
12861 -c "TLS 1.3" \
12862 -s "TLS 1.3"
12863
Jerry Yu75261df2021-09-02 17:40:08 +0800[diff] [blame]12864# gnutls feature tests: check if TLS 1.3 is supported as well as the NO_TICKETS and DISABLE_TLS13_COMPAT_MODE options.
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]12865requires_gnutls_tls1_3
Jerry Yub12d81d2021-08-17 10:56:08 +0800[diff] [blame]12866requires_gnutls_next_no_ticket
12867requires_gnutls_next_disable_tls13_compat
Jerry Yuc502dff2021-12-03 10:04:08 +0800[diff] [blame]12868run_test "TLS 1.3: Test gnutls tls1_3 feature" \
Jerry Yu937ac672021-10-28 17:39:28 +0800[diff] [blame]12869 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE --disable-client-cert " \
Jerry Yub12d81d2021-08-17 10:56:08 +0800[diff] [blame]12870 "$G_NEXT_CLI localhost --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
Jerry Yu04029792021-08-10 16:45:37 +0800[diff] [blame]12871 0 \
12872 -s "Version: TLS1.3" \
12873 -c "Version: TLS1.3"
12874
Jerry Yuc46e9b42021-08-06 11:22:24 +0800[diff] [blame]12875# TLS1.3 test cases
Ronald Cronb18c67a2023-02-16 16:57:16 +0100[diff] [blame]12876requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
12877requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Cron4bb67732023-02-16 15:51:18 +0100[diff] [blame]12878requires_ciphersuite_enabled TLS1-3-CHACHA20-POLY1305-SHA256
Valerio Setticf29c5d2023-09-01 09:03:41 +0200[diff] [blame]12879requires_any_configs_enabled "PSA_WANT_ECC_MONTGOMERY_255"
12880requires_any_configs_enabled "PSA_WANT_ECC_SECP_R1_256"
Ronald Cronb18c67a2023-02-16 16:57:16 +0100[diff] [blame]12881run_test "TLS 1.3: Default" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]12882 "$P_SRV allow_sha1=0 debug_level=3 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key force_version=tls13" \
Ronald Cronb18c67a2023-02-16 16:57:16 +0100[diff] [blame]12883 "$P_CLI allow_sha1=0" \
12884 0 \
12885 -s "Protocol is TLSv1.3" \
Ronald Cron4bb67732023-02-16 15:51:18 +0100[diff] [blame]12886 -s "Ciphersuite is TLS1-3-CHACHA20-POLY1305-SHA256" \
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]12887 -s "ECDH/FFDH group: " \
Ronald Cronb18c67a2023-02-16 16:57:16 +0100[diff] [blame]12888 -s "selected signature algorithm ecdsa_secp256r1_sha256"
12889
Ronald Cron587cfe62024-02-08 08:56:09 +0100[diff] [blame]12890requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
12891requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
12892requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
12893requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
12894run_test "Establish TLS 1.2 then TLS 1.3 session" \
12895 "$P_SRV" \
12896 "( $P_CLI force_version=tls12; \
12897 $P_CLI force_version=tls13 )" \
12898 0 \
12899 -s "Protocol is TLSv1.2" \
12900 -s "Protocol is TLSv1.3" \
12901
Ronald Cron90abb222024-02-08 09:02:49 +0100[diff] [blame]12902requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
12903requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
12904requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
12905requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
12906run_test "Establish TLS 1.3 then TLS 1.2 session" \
12907 "$P_SRV" \
12908 "( $P_CLI force_version=tls13; \
12909 $P_CLI force_version=tls12 )" \
12910 0 \
12911 -s "Protocol is TLSv1.3" \
12912 -s "Protocol is TLSv1.2" \
12913
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]12914requires_openssl_tls1_3_with_compatible_ephemeral
Ronald Cron7c0185f2021-11-30 09:16:24 +0100[diff] [blame]12915requires_config_enabled MBEDTLS_DEBUG_C
12916requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]12917requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuc502dff2021-12-03 10:04:08 +0800[diff] [blame]12918run_test "TLS 1.3: minimal feature sets - openssl" \
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]12919 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]12920 "$P_CLI debug_level=3" \
Jerry Yue1b1e2d2021-10-29 17:46:32 +0800[diff] [blame]12921 0 \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]12922 -c "client state: MBEDTLS_SSL_HELLO_REQUEST" \
12923 -c "client state: MBEDTLS_SSL_SERVER_HELLO" \
12924 -c "client state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
12925 -c "client state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
12926 -c "client state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
12927 -c "client state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
12928 -c "client state: MBEDTLS_SSL_SERVER_FINISHED" \
12929 -c "client state: MBEDTLS_SSL_CLIENT_FINISHED" \
12930 -c "client state: MBEDTLS_SSL_FLUSH_BUFFERS" \
12931 -c "client state: MBEDTLS_SSL_HANDSHAKE_WRAPUP" \
Xiaofei Bai746f9482021-11-12 08:53:56 +0000[diff] [blame]12932 -c "<= ssl_tls13_process_server_hello" \
Ronald Cron4bb67732023-02-16 15:51:18 +0100[diff] [blame]12933 -c "server hello, chosen ciphersuite: ( 1303 ) - TLS1-3-CHACHA20-POLY1305-SHA256" \
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]12934 -c "DHE group name: " \
Xiaofei Bai746f9482021-11-12 08:53:56 +0000[diff] [blame]12935 -c "=> ssl_tls13_process_server_hello" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]12936 -c "<= parse encrypted extensions" \
Jerry Yu834886d2021-10-30 13:26:15 +0800[diff] [blame]12937 -c "Certificate verification flags clear" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]12938 -c "=> parse certificate verify" \
12939 -c "<= parse certificate verify" \
XiaokangQiand0aa3e92021-11-10 06:17:40 +0000[diff] [blame]12940 -c "mbedtls_ssl_tls13_process_certificate_verify() returned 0" \
Jerry Yu6d38c192021-11-15 14:01:04 +0800[diff] [blame]12941 -c "<= parse finished message" \
Gilles Peskinec63a1e02022-01-13 01:10:24 +0100[diff] [blame]12942 -c "Protocol is TLSv1.3" \
Jerry Yu6d38c192021-11-15 14:01:04 +0800[diff] [blame]12943 -c "HTTP/1.0 200 ok"
Jerry Yued2ef2d2021-08-19 18:11:43 +0800[diff] [blame]12944
Jerry Yu76e31ec2021-09-22 21:16:27 +0800[diff] [blame]12945requires_gnutls_tls1_3
Jerry Yu937ac672021-10-28 17:39:28 +0800[diff] [blame]12946requires_gnutls_next_no_ticket
Ronald Cron7c0185f2021-11-30 09:16:24 +0100[diff] [blame]12947requires_config_enabled MBEDTLS_DEBUG_C
12948requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]12949requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuc502dff2021-12-03 10:04:08 +0800[diff] [blame]12950run_test "TLS 1.3: minimal feature sets - gnutls" \
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]12951 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS --disable-client-cert" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]12952 "$P_CLI debug_level=3" \
Jerry Yue1b1e2d2021-10-29 17:46:32 +0800[diff] [blame]12953 0 \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]12954 -s "SERVER HELLO was queued" \
12955 -c "client state: MBEDTLS_SSL_HELLO_REQUEST" \
12956 -c "client state: MBEDTLS_SSL_SERVER_HELLO" \
12957 -c "client state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
12958 -c "client state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
12959 -c "client state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
12960 -c "client state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
12961 -c "client state: MBEDTLS_SSL_SERVER_FINISHED" \
12962 -c "client state: MBEDTLS_SSL_CLIENT_FINISHED" \
12963 -c "client state: MBEDTLS_SSL_FLUSH_BUFFERS" \
12964 -c "client state: MBEDTLS_SSL_HANDSHAKE_WRAPUP" \
Xiaofei Bai746f9482021-11-12 08:53:56 +0000[diff] [blame]12965 -c "<= ssl_tls13_process_server_hello" \
Ronald Cron4bb67732023-02-16 15:51:18 +0100[diff] [blame]12966 -c "server hello, chosen ciphersuite: ( 1303 ) - TLS1-3-CHACHA20-POLY1305-SHA256" \
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]12967 -c "DHE group name: " \
Xiaofei Bai746f9482021-11-12 08:53:56 +0000[diff] [blame]12968 -c "=> ssl_tls13_process_server_hello" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]12969 -c "<= parse encrypted extensions" \
Jerry Yu834886d2021-10-30 13:26:15 +0800[diff] [blame]12970 -c "Certificate verification flags clear" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]12971 -c "=> parse certificate verify" \
12972 -c "<= parse certificate verify" \
XiaokangQiand0aa3e92021-11-10 06:17:40 +0000[diff] [blame]12973 -c "mbedtls_ssl_tls13_process_certificate_verify() returned 0" \
Jerry Yu6d38c192021-11-15 14:01:04 +0800[diff] [blame]12974 -c "<= parse finished message" \
Gilles Peskine860429f2022-02-12 00:44:48 +0100[diff] [blame]12975 -c "Protocol is TLSv1.3" \
Jerry Yu6d38c192021-11-15 14:01:04 +0800[diff] [blame]12976 -c "HTTP/1.0 200 OK"
XiaokangQiand0aa3e92021-11-10 06:17:40 +0000[diff] [blame]12977
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]12978requires_openssl_tls1_3_with_compatible_ephemeral
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]12979requires_config_enabled MBEDTLS_DEBUG_C
12980requires_config_enabled MBEDTLS_SSL_CLI_C
12981requires_config_enabled MBEDTLS_SSL_ALPN
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]12982requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]12983run_test "TLS 1.3: alpn - openssl" \
12984 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -alpn h2" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]12985 "$P_CLI debug_level=3 alpn=h2" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]12986 0 \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]12987 -c "client state: MBEDTLS_SSL_HELLO_REQUEST" \
12988 -c "client state: MBEDTLS_SSL_SERVER_HELLO" \
12989 -c "client state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
12990 -c "client state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
12991 -c "client state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
12992 -c "client state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
12993 -c "client state: MBEDTLS_SSL_SERVER_FINISHED" \
12994 -c "client state: MBEDTLS_SSL_CLIENT_FINISHED" \
12995 -c "client state: MBEDTLS_SSL_FLUSH_BUFFERS" \
12996 -c "client state: MBEDTLS_SSL_HANDSHAKE_WRAPUP" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]12997 -c "<= ssl_tls13_process_server_hello" \
Ronald Cron4bb67732023-02-16 15:51:18 +0100[diff] [blame]12998 -c "server hello, chosen ciphersuite: ( 1303 ) - TLS1-3-CHACHA20-POLY1305-SHA256" \
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]12999 -c "DHE group name: " \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13000 -c "=> ssl_tls13_process_server_hello" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13001 -c "<= parse encrypted extensions" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13002 -c "Certificate verification flags clear" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13003 -c "=> parse certificate verify" \
13004 -c "<= parse certificate verify" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13005 -c "mbedtls_ssl_tls13_process_certificate_verify() returned 0" \
13006 -c "<= parse finished message" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13007 -c "Protocol is TLSv1.3" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13008 -c "HTTP/1.0 200 ok" \
13009 -c "Application Layer Protocol is h2"
13010
13011requires_gnutls_tls1_3
13012requires_gnutls_next_no_ticket
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13013requires_config_enabled MBEDTLS_DEBUG_C
13014requires_config_enabled MBEDTLS_SSL_CLI_C
13015requires_config_enabled MBEDTLS_SSL_ALPN
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13016requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13017run_test "TLS 1.3: alpn - gnutls" \
13018 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS --disable-client-cert --alpn=h2" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13019 "$P_CLI debug_level=3 alpn=h2" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13020 0 \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13021 -s "SERVER HELLO was queued" \
13022 -c "client state: MBEDTLS_SSL_HELLO_REQUEST" \
13023 -c "client state: MBEDTLS_SSL_SERVER_HELLO" \
13024 -c "client state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13025 -c "client state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
13026 -c "client state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
13027 -c "client state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
13028 -c "client state: MBEDTLS_SSL_SERVER_FINISHED" \
13029 -c "client state: MBEDTLS_SSL_CLIENT_FINISHED" \
13030 -c "client state: MBEDTLS_SSL_FLUSH_BUFFERS" \
13031 -c "client state: MBEDTLS_SSL_HANDSHAKE_WRAPUP" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13032 -c "<= ssl_tls13_process_server_hello" \
Ronald Cron4bb67732023-02-16 15:51:18 +0100[diff] [blame]13033 -c "server hello, chosen ciphersuite: ( 1303 ) - TLS1-3-CHACHA20-POLY1305-SHA256" \
Przemek Stekiel1f5c2ba2023-06-15 17:04:44 +0200[diff] [blame]13034 -c "DHE group name: " \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13035 -c "=> ssl_tls13_process_server_hello" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13036 -c "<= parse encrypted extensions" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13037 -c "Certificate verification flags clear" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13038 -c "=> parse certificate verify" \
13039 -c "<= parse certificate verify" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13040 -c "mbedtls_ssl_tls13_process_certificate_verify() returned 0" \
13041 -c "<= parse finished message" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13042 -c "Protocol is TLSv1.3" \
lhuang0486cacac2022-01-21 07:34:27 -0800[diff] [blame]13043 -c "HTTP/1.0 200 OK" \
13044 -c "Application Layer Protocol is h2"
13045
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13046requires_openssl_tls1_3_with_compatible_ephemeral
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]13047requires_config_enabled MBEDTLS_DEBUG_C
XiaokangQian95d5f542022-06-24 02:29:26 +0000[diff] [blame]13048requires_config_enabled MBEDTLS_SSL_SRV_C
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]13049requires_config_enabled MBEDTLS_SSL_ALPN
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13050requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]13051run_test "TLS 1.3: server alpn - openssl" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13052 "$P_SRV debug_level=3 tickets=0 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key alpn=h2" \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]13053 "$O_NEXT_CLI -msg -tls1_3 -no_middlebox -alpn h2" \
13054 0 \
XiaokangQianc7403452022-06-23 03:24:12 +0000[diff] [blame]13055 -s "found alpn extension" \
13056 -s "server side, adding alpn extension" \
13057 -s "Protocol is TLSv1.3" \
13058 -s "HTTP/1.0 200 OK" \
13059 -s "Application Layer Protocol is h2"
13060
13061requires_gnutls_tls1_3
XiaokangQianc7403452022-06-23 03:24:12 +0000[diff] [blame]13062requires_config_enabled MBEDTLS_DEBUG_C
XiaokangQian95d5f542022-06-24 02:29:26 +0000[diff] [blame]13063requires_config_enabled MBEDTLS_SSL_SRV_C
XiaokangQianc7403452022-06-23 03:24:12 +0000[diff] [blame]13064requires_config_enabled MBEDTLS_SSL_ALPN
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13065requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQianc7403452022-06-23 03:24:12 +0000[diff] [blame]13066run_test "TLS 1.3: server alpn - gnutls" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13067 "$P_SRV debug_level=3 tickets=0 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key alpn=h2" \
XiaokangQianc7403452022-06-23 03:24:12 +0000[diff] [blame]13068 "$G_NEXT_CLI localhost -d 4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V --alpn h2" \
13069 0 \
XiaokangQianacb39922022-06-17 10:18:48 +0000[diff] [blame]13070 -s "found alpn extension" \
13071 -s "server side, adding alpn extension" \
13072 -s "Protocol is TLSv1.3" \
13073 -s "HTTP/1.0 200 OK" \
13074 -s "Application Layer Protocol is h2"
13075
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13076requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yuaa6214a2022-01-30 19:53:28 +0800[diff] [blame]13077requires_config_enabled MBEDTLS_DEBUG_C
13078requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13079requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13080run_test "TLS 1.3: Client authentication, no client certificate - openssl" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13081 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -verify 10" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13082 "$P_CLI debug_level=4 crt_file=none key_file=none" \
Jerry Yuaa6214a2022-01-30 19:53:28 +0800[diff] [blame]13083 0 \
Jerry Yuaa6214a2022-01-30 19:53:28 +0800[diff] [blame]13084 -c "got a certificate request" \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13085 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13086 -s "TLS 1.3" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13087 -c "HTTP/1.0 200 ok" \
13088 -c "Protocol is TLSv1.3"
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13089
13090requires_gnutls_tls1_3
13091requires_gnutls_next_no_ticket
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13092requires_config_enabled MBEDTLS_DEBUG_C
13093requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13094requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13095run_test "TLS 1.3: Client authentication, no client certificate - gnutls" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13096 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS --verify-client-cert" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13097 "$P_CLI debug_level=3 crt_file=none key_file=none" \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13098 0 \
13099 -c "got a certificate request" \
13100 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE"\
13101 -s "Version: TLS1.3" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13102 -c "HTTP/1.0 200 OK" \
13103 -c "Protocol is TLSv1.3"
13104
Jerry Yuaa6214a2022-01-30 19:53:28 +0800[diff] [blame]13105
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13106requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu960bc282022-01-26 11:12:34 +0800[diff] [blame]13107requires_config_enabled MBEDTLS_DEBUG_C
13108requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13109requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13110run_test "TLS 1.3: Client authentication, no server middlebox compat - openssl" \
Jerry Yu960bc282022-01-26 11:12:34 +0800[diff] [blame]13111 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10 -no_middlebox" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13112 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/cli2.crt key_file=$DATA_FILES_PATH/cli2.key" \
Jerry Yuc19884f2022-01-29 10:44:44 +0800[diff] [blame]13113 0 \
Jerry Yu960bc282022-01-26 11:12:34 +0800[diff] [blame]13114 -c "got a certificate request" \
Jerry Yu200b47b2022-01-28 14:26:30 +0800[diff] [blame]13115 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13116 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13117 -c "Protocol is TLSv1.3"
Jerry Yu960bc282022-01-26 11:12:34 +0800[diff] [blame]13118
13119requires_gnutls_tls1_3
13120requires_gnutls_next_no_ticket
Jerry Yu960bc282022-01-26 11:12:34 +0800[diff] [blame]13121requires_config_enabled MBEDTLS_DEBUG_C
13122requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13123requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13124run_test "TLS 1.3: Client authentication, no server middlebox compat - gnutls" \
Jerry Yu960bc282022-01-26 11:12:34 +0800[diff] [blame]13125 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13126 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/cli2.crt \
13127 key_file=$DATA_FILES_PATH/cli2.key" \
Jerry Yuc19884f2022-01-29 10:44:44 +0800[diff] [blame]13128 0 \
Jerry Yu960bc282022-01-26 11:12:34 +0800[diff] [blame]13129 -c "got a certificate request" \
Jerry Yu200b47b2022-01-28 14:26:30 +0800[diff] [blame]13130 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13131 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13132 -c "Protocol is TLSv1.3"
Jerry Yu200b47b2022-01-28 14:26:30 +0800[diff] [blame]13133
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13134requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu200b47b2022-01-28 14:26:30 +0800[diff] [blame]13135requires_config_enabled MBEDTLS_DEBUG_C
13136requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13137requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13138run_test "TLS 1.3: Client authentication, ecdsa_secp256r1_sha256 - openssl" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13139 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13140 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/ecdsa_secp256r1.crt \
13141 key_file=$DATA_FILES_PATH/ecdsa_secp256r1.key" \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13142 0 \
13143 -c "got a certificate request" \
13144 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13145 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13146 -c "Protocol is TLSv1.3"
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13147
13148requires_gnutls_tls1_3
13149requires_gnutls_next_no_ticket
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13150requires_config_enabled MBEDTLS_DEBUG_C
13151requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13152requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13153run_test "TLS 1.3: Client authentication, ecdsa_secp256r1_sha256 - gnutls" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13154 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13155 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp256r1.crt \
13156 key_file=$DATA_FILES_PATH/ecdsa_secp256r1.key" \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13157 0 \
13158 -c "got a certificate request" \
13159 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13160 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13161 -c "Protocol is TLSv1.3"
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13162
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13163requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13164requires_config_enabled MBEDTLS_DEBUG_C
13165requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13166requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13167run_test "TLS 1.3: Client authentication, ecdsa_secp384r1_sha384 - openssl" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13168 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13169 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/ecdsa_secp384r1.crt \
13170 key_file=$DATA_FILES_PATH/ecdsa_secp384r1.key" \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13171 0 \
13172 -c "got a certificate request" \
13173 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13174 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13175 -c "Protocol is TLSv1.3"
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13176
13177requires_gnutls_tls1_3
13178requires_gnutls_next_no_ticket
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13179requires_config_enabled MBEDTLS_DEBUG_C
13180requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13181requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13182run_test "TLS 1.3: Client authentication, ecdsa_secp384r1_sha384 - gnutls" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13183 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13184 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp384r1.crt \
13185 key_file=$DATA_FILES_PATH/ecdsa_secp384r1.key" \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13186 0 \
13187 -c "got a certificate request" \
13188 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13189 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13190 -c "Protocol is TLSv1.3"
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13191
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13192requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13193requires_config_enabled MBEDTLS_DEBUG_C
13194requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13195requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13196run_test "TLS 1.3: Client authentication, ecdsa_secp521r1_sha512 - openssl" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13197 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13198 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/ecdsa_secp521r1.crt \
13199 key_file=$DATA_FILES_PATH/ecdsa_secp521r1.key" \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13200 0 \
13201 -c "got a certificate request" \
13202 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13203 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13204 -c "Protocol is TLSv1.3"
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13205
13206requires_gnutls_tls1_3
13207requires_gnutls_next_no_ticket
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13208requires_config_enabled MBEDTLS_DEBUG_C
13209requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13210requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13211run_test "TLS 1.3: Client authentication, ecdsa_secp521r1_sha512 - gnutls" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13212 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13213 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp521r1.crt \
13214 key_file=$DATA_FILES_PATH/ecdsa_secp521r1.key" \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13215 0 \
13216 -c "got a certificate request" \
13217 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13218 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13219 -c "Protocol is TLSv1.3"
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13220
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13221requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13222requires_config_enabled MBEDTLS_DEBUG_C
13223requires_config_enabled MBEDTLS_SSL_CLI_C
13224requires_config_enabled MBEDTLS_RSA_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13225requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13226run_test "TLS 1.3: Client authentication, rsa_pss_rsae_sha256 - openssl" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13227 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13228 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/cert_sha256.crt \
13229 key_file=$DATA_FILES_PATH/server1.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha256" \
Jerry Yu919130c2022-02-23 10:40:19 +0800[diff] [blame]13230 0 \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13231 -c "got a certificate request" \
13232 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13233 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
Jerry Yu919130c2022-02-23 10:40:19 +0800[diff] [blame]13234 -c "Protocol is TLSv1.3"
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13235
13236requires_gnutls_tls1_3
13237requires_gnutls_next_no_ticket
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13238requires_config_enabled MBEDTLS_DEBUG_C
13239requires_config_enabled MBEDTLS_SSL_CLI_C
13240requires_config_enabled MBEDTLS_RSA_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13241requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13242run_test "TLS 1.3: Client authentication, rsa_pss_rsae_sha256 - gnutls" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13243 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13244 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
13245 key_file=$DATA_FILES_PATH/server2.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha256" \
Jerry Yu919130c2022-02-23 10:40:19 +0800[diff] [blame]13246 0 \
Jerry Yu6c3d8212022-02-18 15:23:23 +0800[diff] [blame]13247 -c "got a certificate request" \
13248 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
Jerry Yu562a0fd2022-02-18 15:35:11 +0800[diff] [blame]13249 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
Jerry Yu919130c2022-02-23 10:40:19 +0800[diff] [blame]13250 -c "Protocol is TLSv1.3"
Jerry Yu960bc282022-01-26 11:12:34 +0800[diff] [blame]13251
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13252requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu2124d052022-02-18 21:07:18 +0800[diff] [blame]13253requires_config_enabled MBEDTLS_DEBUG_C
13254requires_config_enabled MBEDTLS_SSL_CLI_C
13255requires_config_enabled MBEDTLS_RSA_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13256requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13257run_test "TLS 1.3: Client authentication, rsa_pss_rsae_sha384 - openssl" \
13258 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13259 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/cert_sha256.crt \
13260 key_file=$DATA_FILES_PATH/server1.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha384" \
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13261 0 \
13262 -c "got a certificate request" \
13263 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13264 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13265 -c "Protocol is TLSv1.3"
13266
13267requires_gnutls_tls1_3
13268requires_gnutls_next_no_ticket
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13269requires_config_enabled MBEDTLS_DEBUG_C
13270requires_config_enabled MBEDTLS_SSL_CLI_C
13271requires_config_enabled MBEDTLS_RSA_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13272requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13273run_test "TLS 1.3: Client authentication, rsa_pss_rsae_sha384 - gnutls" \
13274 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13275 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
13276 key_file=$DATA_FILES_PATH/server2.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha384" \
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13277 0 \
13278 -c "got a certificate request" \
13279 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13280 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13281 -c "Protocol is TLSv1.3"
13282
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13283requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13284requires_config_enabled MBEDTLS_DEBUG_C
13285requires_config_enabled MBEDTLS_SSL_CLI_C
13286requires_config_enabled MBEDTLS_RSA_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13287requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13288run_test "TLS 1.3: Client authentication, rsa_pss_rsae_sha512 - openssl" \
13289 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13290 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/cert_sha256.crt \
13291 key_file=$DATA_FILES_PATH/server1.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha512" \
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13292 0 \
13293 -c "got a certificate request" \
13294 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13295 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13296 -c "Protocol is TLSv1.3"
13297
13298requires_gnutls_tls1_3
13299requires_gnutls_next_no_ticket
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13300requires_config_enabled MBEDTLS_DEBUG_C
13301requires_config_enabled MBEDTLS_SSL_CLI_C
13302requires_config_enabled MBEDTLS_RSA_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13303requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13304run_test "TLS 1.3: Client authentication, rsa_pss_rsae_sha512 - gnutls" \
13305 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13306 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
13307 key_file=$DATA_FILES_PATH/server2.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha512" \
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13308 0 \
13309 -c "got a certificate request" \
13310 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13311 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13312 -c "Protocol is TLSv1.3"
13313
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13314requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu3a58b462022-02-22 16:42:29 +0800[diff] [blame]13315requires_config_enabled MBEDTLS_DEBUG_C
13316requires_config_enabled MBEDTLS_SSL_CLI_C
13317requires_config_enabled MBEDTLS_RSA_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13318requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuccb005e2022-02-22 17:38:34 +0800[diff] [blame]13319run_test "TLS 1.3: Client authentication, client alg not in server list - openssl" \
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13320 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10
Jerry Yu2124d052022-02-18 21:07:18 +0800[diff] [blame]13321 -sigalgs ecdsa_secp256r1_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13322 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp521r1.crt \
13323 key_file=$DATA_FILES_PATH/ecdsa_secp521r1.key sig_algs=ecdsa_secp256r1_sha256,ecdsa_secp521r1_sha512" \
Jerry Yu2124d052022-02-18 21:07:18 +0800[diff] [blame]13324 1 \
13325 -c "got a certificate request" \
13326 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13327 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
Xiaokang Qianea3d9332022-12-07 06:19:49 +0000[diff] [blame]13328 -c "no suitable signature algorithm"
Jerry Yu2124d052022-02-18 21:07:18 +0800[diff] [blame]13329
13330requires_gnutls_tls1_3
13331requires_gnutls_next_no_ticket
Jerry Yu2124d052022-02-18 21:07:18 +0800[diff] [blame]13332requires_config_enabled MBEDTLS_DEBUG_C
13333requires_config_enabled MBEDTLS_SSL_CLI_C
13334requires_config_enabled MBEDTLS_RSA_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13335requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu819f2972022-02-22 10:14:24 +0800[diff] [blame]13336run_test "TLS 1.3: Client authentication, client alg not in server list - gnutls" \
13337 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:-SIGN-ALL:+SIGN-ECDSA-SECP256R1-SHA256:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13338 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp521r1.crt \
13339 key_file=$DATA_FILES_PATH/ecdsa_secp521r1.key sig_algs=ecdsa_secp256r1_sha256,ecdsa_secp521r1_sha512" \
Jerry Yu2124d052022-02-18 21:07:18 +0800[diff] [blame]13340 1 \
13341 -c "got a certificate request" \
13342 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13343 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
Xiaokang Qianea3d9332022-12-07 06:19:49 +0000[diff] [blame]13344 -c "no suitable signature algorithm"
Jerry Yu2124d052022-02-18 21:07:18 +0800[diff] [blame]13345
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13346# Test using an opaque private key for client authentication
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13347requires_openssl_tls1_3_with_compatible_ephemeral
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13348requires_config_enabled MBEDTLS_DEBUG_C
13349requires_config_enabled MBEDTLS_SSL_CLI_C
13350requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13351requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13352run_test "TLS 1.3: Client authentication - opaque key, no server middlebox compat - openssl" \
13353 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10 -no_middlebox" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13354 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/cli2.crt key_file=$DATA_FILES_PATH/cli2.key key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13355 0 \
13356 -c "got a certificate request" \
13357 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13358 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13359 -c "Protocol is TLSv1.3"
13360
13361requires_gnutls_tls1_3
13362requires_gnutls_next_no_ticket
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13363requires_config_enabled MBEDTLS_DEBUG_C
13364requires_config_enabled MBEDTLS_SSL_CLI_C
13365requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13366requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13367run_test "TLS 1.3: Client authentication - opaque key, no server middlebox compat - gnutls" \
13368 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13369 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/cli2.crt \
13370 key_file=$DATA_FILES_PATH/cli2.key key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13371 0 \
13372 -c "got a certificate request" \
13373 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13374 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13375 -c "Protocol is TLSv1.3"
13376
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13377requires_openssl_tls1_3_with_compatible_ephemeral
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13378requires_config_enabled MBEDTLS_DEBUG_C
13379requires_config_enabled MBEDTLS_SSL_CLI_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13380requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13381requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13382run_test "TLS 1.3: Client authentication - opaque key, ecdsa_secp256r1_sha256 - openssl" \
13383 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13384 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/ecdsa_secp256r1.crt \
13385 key_file=$DATA_FILES_PATH/ecdsa_secp256r1.key key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13386 0 \
13387 -c "got a certificate request" \
13388 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13389 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13390 -c "Protocol is TLSv1.3"
13391
13392requires_gnutls_tls1_3
13393requires_gnutls_next_no_ticket
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13394requires_config_enabled MBEDTLS_DEBUG_C
13395requires_config_enabled MBEDTLS_SSL_CLI_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13396requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13397requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13398run_test "TLS 1.3: Client authentication - opaque key, ecdsa_secp256r1_sha256 - gnutls" \
13399 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13400 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp256r1.crt \
13401 key_file=$DATA_FILES_PATH/ecdsa_secp256r1.key key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13402 0 \
13403 -c "got a certificate request" \
13404 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13405 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13406 -c "Protocol is TLSv1.3"
13407
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13408requires_openssl_tls1_3_with_compatible_ephemeral
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13409requires_config_enabled MBEDTLS_DEBUG_C
13410requires_config_enabled MBEDTLS_SSL_CLI_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13411requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13412requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13413run_test "TLS 1.3: Client authentication - opaque key, ecdsa_secp384r1_sha384 - openssl" \
13414 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13415 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/ecdsa_secp384r1.crt \
13416 key_file=$DATA_FILES_PATH/ecdsa_secp384r1.key key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13417 0 \
13418 -c "got a certificate request" \
13419 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13420 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13421 -c "Protocol is TLSv1.3"
13422
13423requires_gnutls_tls1_3
13424requires_gnutls_next_no_ticket
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13425requires_config_enabled MBEDTLS_DEBUG_C
13426requires_config_enabled MBEDTLS_SSL_CLI_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13427requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13428requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13429run_test "TLS 1.3: Client authentication - opaque key, ecdsa_secp384r1_sha384 - gnutls" \
13430 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13431 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp384r1.crt \
13432 key_file=$DATA_FILES_PATH/ecdsa_secp384r1.key key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13433 0 \
13434 -c "got a certificate request" \
13435 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13436 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13437 -c "Protocol is TLSv1.3"
13438
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13439requires_openssl_tls1_3_with_compatible_ephemeral
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13440requires_config_enabled MBEDTLS_DEBUG_C
13441requires_config_enabled MBEDTLS_SSL_CLI_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13442requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13443requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13444run_test "TLS 1.3: Client authentication - opaque key, ecdsa_secp521r1_sha512 - openssl" \
13445 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13446 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/ecdsa_secp521r1.crt \
13447 key_file=$DATA_FILES_PATH/ecdsa_secp521r1.key key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13448 0 \
13449 -c "got a certificate request" \
13450 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13451 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13452 -c "Protocol is TLSv1.3"
13453
13454requires_gnutls_tls1_3
13455requires_gnutls_next_no_ticket
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13456requires_config_enabled MBEDTLS_DEBUG_C
13457requires_config_enabled MBEDTLS_SSL_CLI_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13458requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13459requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13460run_test "TLS 1.3: Client authentication - opaque key, ecdsa_secp521r1_sha512 - gnutls" \
13461 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13462 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp521r1.crt \
13463 key_file=$DATA_FILES_PATH/ecdsa_secp521r1.key key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13464 0 \
13465 -c "got a certificate request" \
13466 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13467 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13468 -c "Protocol is TLSv1.3"
13469
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13470requires_openssl_tls1_3_with_compatible_ephemeral
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13471requires_config_enabled MBEDTLS_DEBUG_C
13472requires_config_enabled MBEDTLS_SSL_CLI_C
13473requires_config_enabled MBEDTLS_RSA_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13474requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13475requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13476run_test "TLS 1.3: Client authentication - opaque key, rsa_pss_rsae_sha256 - openssl" \
13477 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13478 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/cert_sha256.crt \
13479 key_file=$DATA_FILES_PATH/server1.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha256 key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13480 0 \
13481 -c "got a certificate request" \
13482 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13483 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13484 -c "Protocol is TLSv1.3"
13485
13486requires_gnutls_tls1_3
13487requires_gnutls_next_no_ticket
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13488requires_config_enabled MBEDTLS_DEBUG_C
13489requires_config_enabled MBEDTLS_SSL_CLI_C
13490requires_config_enabled MBEDTLS_RSA_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13491requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13492requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13493run_test "TLS 1.3: Client authentication - opaque key, rsa_pss_rsae_sha256 - gnutls" \
13494 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13495 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
13496 key_file=$DATA_FILES_PATH/server2.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha256 key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13497 0 \
13498 -c "got a certificate request" \
13499 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13500 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13501 -c "Protocol is TLSv1.3"
13502
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13503requires_openssl_tls1_3_with_compatible_ephemeral
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13504requires_config_enabled MBEDTLS_DEBUG_C
13505requires_config_enabled MBEDTLS_SSL_CLI_C
13506requires_config_enabled MBEDTLS_RSA_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13507requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13508requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13509run_test "TLS 1.3: Client authentication - opaque key, rsa_pss_rsae_sha384 - openssl" \
13510 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13511 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/cert_sha256.crt \
13512 key_file=$DATA_FILES_PATH/server1.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha384 key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13513 0 \
13514 -c "got a certificate request" \
13515 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13516 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13517 -c "Protocol is TLSv1.3"
13518
13519requires_gnutls_tls1_3
13520requires_gnutls_next_no_ticket
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13521requires_config_enabled MBEDTLS_DEBUG_C
13522requires_config_enabled MBEDTLS_SSL_CLI_C
13523requires_config_enabled MBEDTLS_RSA_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13524requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13525requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13526run_test "TLS 1.3: Client authentication - opaque key, rsa_pss_rsae_sha384 - gnutls" \
13527 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13528 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
13529 key_file=$DATA_FILES_PATH/server2.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha384 key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13530 0 \
13531 -c "got a certificate request" \
13532 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13533 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13534 -c "Protocol is TLSv1.3"
13535
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13536requires_openssl_tls1_3_with_compatible_ephemeral
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13537requires_config_enabled MBEDTLS_DEBUG_C
13538requires_config_enabled MBEDTLS_SSL_CLI_C
13539requires_config_enabled MBEDTLS_RSA_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13540requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13541requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13542run_test "TLS 1.3: Client authentication - opaque key, rsa_pss_rsae_sha512 - openssl" \
13543 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13544 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/cert_sha256.crt \
13545 key_file=$DATA_FILES_PATH/server1.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha512 key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13546 0 \
13547 -c "got a certificate request" \
13548 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13549 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13550 -c "Protocol is TLSv1.3"
13551
13552requires_gnutls_tls1_3
13553requires_gnutls_next_no_ticket
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13554requires_config_enabled MBEDTLS_DEBUG_C
13555requires_config_enabled MBEDTLS_SSL_CLI_C
13556requires_config_enabled MBEDTLS_RSA_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13557requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13558requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13559run_test "TLS 1.3: Client authentication - opaque key, rsa_pss_rsae_sha512 - gnutls" \
13560 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13561 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
13562 key_file=$DATA_FILES_PATH/server2.key sig_algs=ecdsa_secp256r1_sha256,rsa_pss_rsae_sha512 key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13563 0 \
13564 -c "got a certificate request" \
13565 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13566 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
13567 -c "Protocol is TLSv1.3"
13568
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13569requires_openssl_tls1_3_with_compatible_ephemeral
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13570requires_config_enabled MBEDTLS_DEBUG_C
13571requires_config_enabled MBEDTLS_SSL_CLI_C
13572requires_config_enabled MBEDTLS_RSA_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13573requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13574requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13575run_test "TLS 1.3: Client authentication - opaque key, client alg not in server list - openssl" \
13576 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache -Verify 10
13577 -sigalgs ecdsa_secp256r1_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13578 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp521r1.crt \
13579 key_file=$DATA_FILES_PATH/ecdsa_secp521r1.key sig_algs=ecdsa_secp256r1_sha256,ecdsa_secp521r1_sha512 key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13580 1 \
13581 -c "got a certificate request" \
13582 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13583 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
Xiaokang Qianea3d9332022-12-07 06:19:49 +0000[diff] [blame]13584 -c "no suitable signature algorithm"
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13585
13586requires_gnutls_tls1_3
13587requires_gnutls_next_no_ticket
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13588requires_config_enabled MBEDTLS_DEBUG_C
13589requires_config_enabled MBEDTLS_SSL_CLI_C
13590requires_config_enabled MBEDTLS_RSA_C
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13591requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13592requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13593run_test "TLS 1.3: Client authentication - opaque key, client alg not in server list - gnutls" \
13594 "$G_NEXT_SRV --debug=4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:-SIGN-ALL:+SIGN-ECDSA-SECP256R1-SHA256:%NO_TICKETS" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13595 "$P_CLI debug_level=3 crt_file=$DATA_FILES_PATH/ecdsa_secp521r1.crt \
13596 key_file=$DATA_FILES_PATH/ecdsa_secp521r1.key sig_algs=ecdsa_secp256r1_sha256,ecdsa_secp521r1_sha512 key_opaque=1" \
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13597 1 \
13598 -c "got a certificate request" \
13599 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE" \
13600 -c "client state: MBEDTLS_SSL_CLIENT_CERTIFICATE_VERIFY" \
Xiaokang Qianea3d9332022-12-07 06:19:49 +0000[diff] [blame]13601 -c "no suitable signature algorithm"
Neil Armstrong7f6f6722022-04-15 10:09:11 +0200[diff] [blame]13602
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13603requires_openssl_tls1_3_with_compatible_ephemeral
Ronald Cron7c0185f2021-11-30 09:16:24 +0100[diff] [blame]13604requires_config_enabled MBEDTLS_DEBUG_C
13605requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13606requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crondf5f8682022-04-05 16:01:03 +0200[diff] [blame]13607run_test "TLS 1.3: HRR check, ciphersuite TLS_AES_128_GCM_SHA256 - openssl" \
XiaokangQian7bae3b62022-01-26 06:31:39 +0000[diff] [blame]13608 "$O_NEXT_SRV -ciphersuites TLS_AES_128_GCM_SHA256 -sigalgs ecdsa_secp256r1_sha256 -groups P-256 -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13609 "$P_CLI debug_level=4" \
XiaokangQian7bae3b62022-01-26 06:31:39 +0000[diff] [blame]13610 0 \
13611 -c "received HelloRetryRequest message" \
XiaokangQiana9090612022-01-27 03:48:27 +0000[diff] [blame]13612 -c "<= ssl_tls13_process_server_hello ( HelloRetryRequest )" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13613 -c "client state: MBEDTLS_SSL_CLIENT_HELLO" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13614 -c "Protocol is TLSv1.3" \
XiaokangQian7bae3b62022-01-26 06:31:39 +0000[diff] [blame]13615 -c "HTTP/1.0 200 ok"
13616
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13617requires_openssl_tls1_3_with_compatible_ephemeral
XiaokangQian7bae3b62022-01-26 06:31:39 +0000[diff] [blame]13618requires_config_enabled MBEDTLS_DEBUG_C
13619requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13620requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crondf5f8682022-04-05 16:01:03 +0200[diff] [blame]13621run_test "TLS 1.3: HRR check, ciphersuite TLS_AES_256_GCM_SHA384 - openssl" \
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13622 "$O_NEXT_SRV -ciphersuites TLS_AES_256_GCM_SHA384 -sigalgs ecdsa_secp256r1_sha256 -groups P-256 -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13623 "$P_CLI debug_level=4" \
XiaokangQian6db08dd2022-01-18 06:36:23 +0000[diff] [blame]13624 0 \
Jerry Yu8c5559d2021-11-22 21:15:41 +0800[diff] [blame]13625 -c "received HelloRetryRequest message" \
XiaokangQiana9090612022-01-27 03:48:27 +0000[diff] [blame]13626 -c "<= ssl_tls13_process_server_hello ( HelloRetryRequest )" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13627 -c "client state: MBEDTLS_SSL_CLIENT_HELLO" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13628 -c "Protocol is TLSv1.3" \
XiaokangQian6db08dd2022-01-18 06:36:23 +0000[diff] [blame]13629 -c "HTTP/1.0 200 ok"
Jerry Yu8c5559d2021-11-22 21:15:41 +0800[diff] [blame]13630
13631requires_gnutls_tls1_3
13632requires_gnutls_next_no_ticket
Ronald Cron7c0185f2021-11-30 09:16:24 +0100[diff] [blame]13633requires_config_enabled MBEDTLS_DEBUG_C
13634requires_config_enabled MBEDTLS_SSL_CLI_C
Przemek Stekielc31a7982023-06-27 10:53:33 +0200[diff] [blame]13635requires_config_enabled PSA_WANT_ALG_ECDH
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13636requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crondf5f8682022-04-05 16:01:03 +0200[diff] [blame]13637run_test "TLS 1.3: HRR check, ciphersuite TLS_AES_128_GCM_SHA256 - gnutls" \
XiaokangQian7bae3b62022-01-26 06:31:39 +0000[diff] [blame]13638 "$G_NEXT_SRV -d 4 --priority=NONE:+GROUP-SECP256R1:+AES-128-GCM:+SHA256:+AEAD:+SIGN-ECDSA-SECP256R1-SHA256:+VERS-TLS1.3:%NO_TICKETS --disable-client-cert" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13639 "$P_CLI debug_level=4" \
XiaokangQian7bae3b62022-01-26 06:31:39 +0000[diff] [blame]13640 0 \
13641 -c "received HelloRetryRequest message" \
XiaokangQiana9090612022-01-27 03:48:27 +0000[diff] [blame]13642 -c "<= ssl_tls13_process_server_hello ( HelloRetryRequest )" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13643 -c "client state: MBEDTLS_SSL_CLIENT_HELLO" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13644 -c "Protocol is TLSv1.3" \
XiaokangQian7bae3b62022-01-26 06:31:39 +0000[diff] [blame]13645 -c "HTTP/1.0 200 OK"
13646
13647requires_gnutls_tls1_3
13648requires_gnutls_next_no_ticket
XiaokangQian7bae3b62022-01-26 06:31:39 +0000[diff] [blame]13649requires_config_enabled MBEDTLS_DEBUG_C
13650requires_config_enabled MBEDTLS_SSL_CLI_C
Przemek Stekielc31a7982023-06-27 10:53:33 +0200[diff] [blame]13651requires_config_enabled PSA_WANT_ALG_ECDH
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13652requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crondf5f8682022-04-05 16:01:03 +0200[diff] [blame]13653run_test "TLS 1.3: HRR check, ciphersuite TLS_AES_256_GCM_SHA384 - gnutls" \
XiaokangQian355e09a2022-01-20 11:14:50 +0000[diff] [blame]13654 "$G_NEXT_SRV -d 4 --priority=NONE:+GROUP-SECP256R1:+AES-256-GCM:+SHA384:+AEAD:+SIGN-ECDSA-SECP256R1-SHA256:+VERS-TLS1.3:%NO_TICKETS --disable-client-cert" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13655 "$P_CLI debug_level=4" \
XiaokangQian355e09a2022-01-20 11:14:50 +0000[diff] [blame]13656 0 \
Jerry Yu8c5559d2021-11-22 21:15:41 +0800[diff] [blame]13657 -c "received HelloRetryRequest message" \
XiaokangQiana9090612022-01-27 03:48:27 +0000[diff] [blame]13658 -c "<= ssl_tls13_process_server_hello ( HelloRetryRequest )" \
Ronald Cron27c85e72022-03-08 11:37:55 +0100[diff] [blame]13659 -c "client state: MBEDTLS_SSL_CLIENT_HELLO" \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13660 -c "Protocol is TLSv1.3" \
XiaokangQian355e09a2022-01-20 11:14:50 +0000[diff] [blame]13661 -c "HTTP/1.0 200 OK"
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13662
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13663requires_openssl_tls1_3_with_compatible_ephemeral
XiaokangQian5e4528c2022-02-17 07:51:12 +0000[diff] [blame]13664requires_config_enabled MBEDTLS_DEBUG_C
XiaokangQiane8ff3502022-04-22 02:34:40 +0000[diff] [blame]13665requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13666requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQian318dc762022-04-20 09:43:51 +0000[diff] [blame]13667run_test "TLS 1.3: Server side check - openssl" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13668 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Jerry Yu66220492022-04-23 13:53:36 +0800[diff] [blame]13669 "$O_NEXT_CLI -msg -debug -tls1_3 -no_middlebox" \
Jerry Yu4d8567f2022-04-17 10:57:57 +0800[diff] [blame]13670 0 \
Jerry Yuabf20c72022-04-14 18:36:14 +0800[diff] [blame]13671 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13672 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13673 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
Jerry Yucef55db2022-04-23 11:02:05 +0800[diff] [blame]13674 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
Jerry Yuc8bdbf72022-04-23 12:37:35 +0800[diff] [blame]13675 -s "tls13 server state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
13676 -s "tls13 server state: MBEDTLS_SSL_SERVER_FINISHED" \
Jerry Yu66220492022-04-23 13:53:36 +0800[diff] [blame]13677 -s "tls13 server state: MBEDTLS_SSL_CLIENT_FINISHED" \
Jerry Yu155493d2022-04-25 13:30:18 +0800[diff] [blame]13678 -s "tls13 server state: MBEDTLS_SSL_HANDSHAKE_WRAPUP"
XiaokangQian5e4528c2022-02-17 07:51:12 +0000[diff] [blame]13679
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13680requires_openssl_tls1_3_with_compatible_ephemeral
XiaokangQian2f150e12022-04-29 02:01:19 +0000[diff] [blame]13681requires_config_enabled MBEDTLS_DEBUG_C
13682requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13683requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQiana987e1d2022-05-07 01:25:58 +0000[diff] [blame]13684run_test "TLS 1.3: Server side check - openssl with client authentication" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13685 "$P_SRV debug_level=4 auth_mode=required crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
13686 "$O_NEXT_CLI -msg -debug -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key -tls1_3 -no_middlebox" \
XiaokangQian9a4e1dd2022-05-26 00:58:11 +0000[diff] [blame]13687 0 \
XiaokangQian2f150e12022-04-29 02:01:19 +0000[diff] [blame]13688 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13689 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13690 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13691 -s "tls13 server state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
13692 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
Jerry Yuc4505662022-05-10 20:39:21 +0800[diff] [blame]13693 -s "tls13 server state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
13694 -s "tls13 server state: MBEDTLS_SSL_SERVER_FINISHED" \
XiaokangQiana987e1d2022-05-07 01:25:58 +0000[diff] [blame]13695 -s "=> write certificate request" \
XiaokangQian2f150e12022-04-29 02:01:19 +0000[diff] [blame]13696 -s "=> parse client hello" \
13697 -s "<= parse client hello"
13698
XiaokangQian5e4528c2022-02-17 07:51:12 +0000[diff] [blame]13699requires_gnutls_tls1_3
13700requires_gnutls_next_no_ticket
XiaokangQian5e4528c2022-02-17 07:51:12 +0000[diff] [blame]13701requires_config_enabled MBEDTLS_DEBUG_C
XiaokangQiane8ff3502022-04-22 02:34:40 +0000[diff] [blame]13702requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13703requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQian318dc762022-04-20 09:43:51 +0000[diff] [blame]13704run_test "TLS 1.3: Server side check - gnutls" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13705 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
XiaokangQian3f84d5d2022-04-19 06:36:17 +0000[diff] [blame]13706 "$G_NEXT_CLI localhost -d 4 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
Jerry Yu66220492022-04-23 13:53:36 +0800[diff] [blame]13707 0 \
Jerry Yuabf20c72022-04-14 18:36:14 +0800[diff] [blame]13708 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13709 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13710 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
Jerry Yucef55db2022-04-23 11:02:05 +0800[diff] [blame]13711 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
Jerry Yuc8bdbf72022-04-23 12:37:35 +0800[diff] [blame]13712 -s "tls13 server state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
13713 -s "tls13 server state: MBEDTLS_SSL_SERVER_FINISHED" \
Jerry Yu66220492022-04-23 13:53:36 +0800[diff] [blame]13714 -s "tls13 server state: MBEDTLS_SSL_CLIENT_FINISHED" \
13715 -s "tls13 server state: MBEDTLS_SSL_HANDSHAKE_WRAPUP" \
13716 -c "HTTP/1.0 200 OK"
XiaokangQian5e4528c2022-02-17 07:51:12 +0000[diff] [blame]13717
XiaokangQian2f150e12022-04-29 02:01:19 +0000[diff] [blame]13718requires_gnutls_tls1_3
13719requires_gnutls_next_no_ticket
XiaokangQian2f150e12022-04-29 02:01:19 +0000[diff] [blame]13720requires_config_enabled MBEDTLS_DEBUG_C
13721requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13722requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQiana987e1d2022-05-07 01:25:58 +0000[diff] [blame]13723run_test "TLS 1.3: Server side check - gnutls with client authentication" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13724 "$P_SRV debug_level=4 auth_mode=required crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
13725 "$G_NEXT_CLI localhost -d 4 --x509certfile $DATA_FILES_PATH/server5.crt --x509keyfile $DATA_FILES_PATH/server5.key --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
XiaokangQianc3017f62022-05-13 05:55:41 +0000[diff] [blame]13726 0 \
XiaokangQian2f150e12022-04-29 02:01:19 +0000[diff] [blame]13727 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13728 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13729 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13730 -s "tls13 server state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
13731 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
Jerry Yuc4505662022-05-10 20:39:21 +0800[diff] [blame]13732 -s "tls13 server state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
13733 -s "tls13 server state: MBEDTLS_SSL_SERVER_FINISHED" \
XiaokangQiana987e1d2022-05-07 01:25:58 +0000[diff] [blame]13734 -s "=> write certificate request" \
XiaokangQian2f150e12022-04-29 02:01:19 +0000[diff] [blame]13735 -s "=> parse client hello" \
13736 -s "<= parse client hello"
13737
Jerry Yu8b9fd372022-04-14 20:55:12 +0800[diff] [blame]13738requires_config_enabled MBEDTLS_DEBUG_C
13739requires_config_enabled MBEDTLS_SSL_SRV_C
Jerry Yu955ddd72022-04-22 22:27:33 +0800[diff] [blame]13740requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13741requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yu8b9fd372022-04-14 20:55:12 +0800[diff] [blame]13742run_test "TLS 1.3: Server side check - mbedtls" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13743 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Ronald Cron65f90292023-03-13 17:38:12 +0100[diff] [blame]13744 "$P_CLI debug_level=4" \
XiaokangQianc3017f62022-05-13 05:55:41 +0000[diff] [blame]13745 0 \
Jerry Yu8b9fd372022-04-14 20:55:12 +0800[diff] [blame]13746 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13747 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13748 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
Jerry Yua7abc5e2022-05-11 13:32:03 +0800[diff] [blame]13749 -s "tls13 server state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
Jerry Yucef55db2022-04-23 11:02:05 +0800[diff] [blame]13750 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
Jerry Yua7abc5e2022-05-11 13:32:03 +0800[diff] [blame]13751 -s "tls13 server state: MBEDTLS_SSL_CERTIFICATE_VERIFY" \
13752 -s "tls13 server state: MBEDTLS_SSL_SERVER_FINISHED" \
13753 -s "tls13 server state: MBEDTLS_SSL_CLIENT_FINISHED" \
13754 -s "tls13 server state: MBEDTLS_SSL_HANDSHAKE_WRAPUP" \
13755 -c "HTTP/1.0 200 OK"
Jerry Yu8b9fd372022-04-14 20:55:12 +0800[diff] [blame]13756
XiaokangQian45c22202022-05-06 06:54:09 +0000[diff] [blame]13757requires_config_enabled MBEDTLS_DEBUG_C
13758requires_config_enabled MBEDTLS_SSL_SRV_C
13759requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13760requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQiana987e1d2022-05-07 01:25:58 +0000[diff] [blame]13761run_test "TLS 1.3: Server side check - mbedtls with client authentication" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13762 "$P_SRV debug_level=4 auth_mode=required crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
13763 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key" \
XiaokangQianc3017f62022-05-13 05:55:41 +0000[diff] [blame]13764 0 \
XiaokangQian45c22202022-05-06 06:54:09 +0000[diff] [blame]13765 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13766 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13767 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13768 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
Jerry Yua7abc5e2022-05-11 13:32:03 +0800[diff] [blame]13769 -s "=> write certificate request" \
XiaokangQian45c22202022-05-06 06:54:09 +0000[diff] [blame]13770 -c "client state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
XiaokangQian45c22202022-05-06 06:54:09 +0000[diff] [blame]13771 -s "=> parse client hello" \
13772 -s "<= parse client hello"
13773
XiaokangQianaca90482022-05-19 07:19:31 +0000[diff] [blame]13774requires_config_enabled MBEDTLS_DEBUG_C
13775requires_config_enabled MBEDTLS_SSL_SRV_C
13776requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13777requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQianaca90482022-05-19 07:19:31 +0000[diff] [blame]13778run_test "TLS 1.3: Server side check - mbedtls with client empty certificate" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13779 "$P_SRV debug_level=4 auth_mode=required crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Ronald Cron65f90292023-03-13 17:38:12 +0100[diff] [blame]13780 "$P_CLI debug_level=4 crt_file=none key_file=none" \
XiaokangQianaca90482022-05-19 07:19:31 +0000[diff] [blame]13781 1 \
13782 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13783 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13784 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13785 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
13786 -s "=> write certificate request" \
13787 -s "SSL - No client certification received from the client, but required by the authentication mode" \
13788 -c "client state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
13789 -s "=> parse client hello" \
13790 -s "<= parse client hello"
13791
XiaokangQianaca90482022-05-19 07:19:31 +0000[diff] [blame]13792requires_config_enabled MBEDTLS_DEBUG_C
13793requires_config_enabled MBEDTLS_SSL_SRV_C
13794requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13795requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQianaca90482022-05-19 07:19:31 +0000[diff] [blame]13796run_test "TLS 1.3: Server side check - mbedtls with optional client authentication" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13797 "$P_SRV debug_level=4 auth_mode=optional crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Ronald Cron65f90292023-03-13 17:38:12 +0100[diff] [blame]13798 "$P_CLI debug_level=4 crt_file=none key_file=none" \
XiaokangQianaca90482022-05-19 07:19:31 +0000[diff] [blame]13799 0 \
13800 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13801 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13802 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13803 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
13804 -s "=> write certificate request" \
13805 -c "client state: MBEDTLS_SSL_CERTIFICATE_REQUEST" \
13806 -s "=> parse client hello" \
13807 -s "<= parse client hello"
Jerry Yuede50ea2022-05-05 11:21:20 +0800[diff] [blame]13808
13809requires_config_enabled MBEDTLS_DEBUG_C
13810requires_config_enabled MBEDTLS_SSL_CLI_C
13811requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13812requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekielc31a7982023-06-27 10:53:33 +0200[diff] [blame]13813requires_config_enabled PSA_WANT_ALG_ECDH
Jerry Yuede50ea2022-05-05 11:21:20 +0800[diff] [blame]13814run_test "TLS 1.3: server: HRR check - mbedtls" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]13815 "$P_SRV debug_level=4 groups=secp384r1" \
13816 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Jerry Yu36becb12022-05-12 16:57:20 +0800[diff] [blame]13817 0 \
Jerry Yuede50ea2022-05-05 11:21:20 +0800[diff] [blame]13818 -s "tls13 server state: MBEDTLS_SSL_CLIENT_HELLO" \
13819 -s "tls13 server state: MBEDTLS_SSL_SERVER_HELLO" \
13820 -s "tls13 server state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13821 -s "tls13 server state: MBEDTLS_SSL_HELLO_RETRY_REQUEST" \
13822 -c "client state: MBEDTLS_SSL_ENCRYPTED_EXTENSIONS" \
13823 -s "selected_group: secp384r1" \
Jerry Yuede50ea2022-05-05 11:21:20 +0800[diff] [blame]13824 -s "=> write hello retry request" \
13825 -s "<= write hello retry request"
13826
Jerry Yub89125b2022-05-13 15:45:49 +0800[diff] [blame]13827requires_config_enabled MBEDTLS_DEBUG_C
13828requires_config_enabled MBEDTLS_SSL_SRV_C
13829requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13830requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yub89125b2022-05-13 15:45:49 +0800[diff] [blame]13831run_test "TLS 1.3: Server side check, no server certificate available" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]13832 "$P_SRV debug_level=4 crt_file=none key_file=none" \
Ronald Cron65f90292023-03-13 17:38:12 +0100[diff] [blame]13833 "$P_CLI debug_level=4" \
Jerry Yub89125b2022-05-13 15:45:49 +0800[diff] [blame]13834 1 \
13835 -s "tls13 server state: MBEDTLS_SSL_SERVER_CERTIFICATE" \
13836 -s "No certificate available."
13837
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13838requires_openssl_tls1_3_with_compatible_ephemeral
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13839requires_config_enabled MBEDTLS_DEBUG_C
13840requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13841requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQian2ccd97b2022-05-31 08:30:17 +0000[diff] [blame]13842run_test "TLS 1.3: Server side check - openssl with sni" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13843 "$P_SRV debug_level=4 auth_mode=required crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0 \
13844 sni=localhost,$DATA_FILES_PATH/server5.crt,$DATA_FILES_PATH/server5.key,$DATA_FILES_PATH/test-ca_cat12.crt,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
13845 "$O_NEXT_CLI -msg -debug -servername localhost -CAfile $DATA_FILES_PATH/test-ca_cat12.crt -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key -tls1_3" \
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13846 0 \
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13847 -s "parse ServerName extension" \
XiaokangQian129aeb92022-06-02 09:29:18 +0000[diff] [blame]13848 -s "HTTP/1.0 200 OK"
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13849
XiaokangQianac41edf2022-05-31 13:22:13 +0000[diff] [blame]13850requires_gnutls_tls1_3
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13851requires_config_enabled MBEDTLS_DEBUG_C
13852requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13853requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQian2ccd97b2022-05-31 08:30:17 +0000[diff] [blame]13854run_test "TLS 1.3: Server side check - gnutls with sni" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13855 "$P_SRV debug_level=4 auth_mode=required crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0 \
13856 sni=localhost,$DATA_FILES_PATH/server5.crt,$DATA_FILES_PATH/server5.key,$DATA_FILES_PATH/test-ca_cat12.crt,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
13857 "$G_NEXT_CLI localhost -d 4 --sni-hostname=localhost --x509certfile $DATA_FILES_PATH/server5.crt --x509keyfile $DATA_FILES_PATH/server5.key --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:%NO_TICKETS -V" \
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13858 0 \
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13859 -s "parse ServerName extension" \
XiaokangQian129aeb92022-06-02 09:29:18 +0000[diff] [blame]13860 -s "HTTP/1.0 200 OK"
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13861
XiaokangQian40a35232022-05-07 09:02:40 +0000[diff] [blame]13862requires_config_enabled MBEDTLS_DEBUG_C
13863requires_config_enabled MBEDTLS_SSL_SRV_C
13864requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13865requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
XiaokangQian2ccd97b2022-05-31 08:30:17 +0000[diff] [blame]13866run_test "TLS 1.3: Server side check - mbedtls with sni" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13867 "$P_SRV debug_level=4 auth_mode=required crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0 \
13868 sni=localhost,$DATA_FILES_PATH/server2.crt,$DATA_FILES_PATH/server2.key,-,-,-,polarssl.example,$DATA_FILES_PATH/server1-nospace.crt,$DATA_FILES_PATH/server1.key,-,-,-" \
13869 "$P_CLI debug_level=4 server_name=localhost crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key" \
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13870 0 \
XiaokangQianf2a94202022-05-20 06:44:24 +0000[diff] [blame]13871 -s "parse ServerName extension" \
XiaokangQian129aeb92022-06-02 09:29:18 +0000[diff] [blame]13872 -s "HTTP/1.0 200 OK"
XiaokangQian40a35232022-05-07 09:02:40 +0000[diff] [blame]13873
Gilles Peskine2baaf602022-01-07 15:46:12 +0100[diff] [blame]13874for i in opt-testcases/*.sh
Jerry Yucdcb6832021-11-29 16:50:13 +0800[diff] [blame]13875do
Gilles Peskine5eb2b022022-01-07 15:47:02 +0100[diff] [blame]13876 TEST_SUITE_NAME=${i##*/}
13877 TEST_SUITE_NAME=${TEST_SUITE_NAME%.*}
13878 . "$i"
Jerry Yucdcb6832021-11-29 16:50:13 +0800[diff] [blame]13879done
Gilles Peskine5eb2b022022-01-07 15:47:02 +0100[diff] [blame]13880unset TEST_SUITE_NAME
Jerry Yu305bfc32021-11-24 16:04:47 +0800[diff] [blame]13881
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13882# Test 1.3 compatibility mode
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13883requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
13884requires_config_enabled MBEDTLS_DEBUG_C
13885requires_config_enabled MBEDTLS_SSL_SRV_C
13886requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13887requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13888run_test "TLS 1.3 m->m both peers do not support middlebox compatibility" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]13889 "$P_SRV debug_level=4 tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13890 "$P_CLI debug_level=4" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13891 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13892 -s "Protocol is TLSv1.3" \
13893 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13894 -S "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_SERVER_HELLO" \
13895 -C "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
13896
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13897requires_config_enabled MBEDTLS_DEBUG_C
13898requires_config_enabled MBEDTLS_SSL_SRV_C
13899requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13900requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
13901requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13902run_test "TLS 1.3 m->m both with middlebox compat support" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]13903 "$P_SRV debug_level=4 tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13904 "$P_CLI debug_level=4" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13905 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13906 -s "Protocol is TLSv1.3" \
13907 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13908 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_SERVER_HELLO" \
13909 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
13910
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13911requires_openssl_tls1_3_with_compatible_ephemeral
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13912requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
Ronald Cron7c0185f2021-11-30 09:16:24 +0100[diff] [blame]13913requires_config_enabled MBEDTLS_DEBUG_C
13914requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13915requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]13916run_test "TLS 1.3 m->O both peers do not support middlebox compatibility" \
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13917 "$O_NEXT_SRV -msg -tls1_3 -no_middlebox -num_tickets 0 -no_resume_ephemeral -no_cache" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13918 "$P_CLI debug_level=4" \
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13919 0 \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13920 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13921 -C "ChangeCipherSpec invalid in TLS 1.3 without compatibility mode" \
13922 -C "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13923
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13924requires_openssl_tls1_3_with_compatible_ephemeral
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13925requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
Ronald Cron7c0185f2021-11-30 09:16:24 +0100[diff] [blame]13926requires_config_enabled MBEDTLS_DEBUG_C
13927requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13928requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]13929run_test "TLS 1.3 m->O server with middlebox compat support, not client" \
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13930 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13931 "$P_CLI debug_level=4" \
Gilles Peskinefc3accd2024-09-13 13:46:37 +0200[diff] [blame]13932 0 \
13933 -c "Protocol is TLSv1.3" \
13934 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
Ronald Cronfdb0e3f2021-12-09 10:39:19 +0100[diff] [blame]13935
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13936requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13937requires_config_enabled MBEDTLS_DEBUG_C
13938requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13939requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
13940requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13941run_test "TLS 1.3 m->O both with middlebox compat support" \
13942 "$O_NEXT_SRV -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13943 "$P_CLI debug_level=4" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13944 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13945 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13946 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
13947
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]13948requires_gnutls_tls1_3
13949requires_gnutls_next_no_ticket
13950requires_gnutls_next_disable_tls13_compat
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]13951requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
13952requires_config_enabled MBEDTLS_DEBUG_C
13953requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13954requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]13955run_test "TLS 1.3 m->G both peers do not support middlebox compatibility" \
13956 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE --disable-client-cert" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13957 "$P_CLI debug_level=4" \
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]13958 0 \
Ronald Crona1b8f6e2022-03-18 14:04:12 +0100[diff] [blame]13959 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13960 -C "ChangeCipherSpec invalid in TLS 1.3 without compatibility mode" \
13961 -C "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]13962
13963requires_gnutls_tls1_3
13964requires_gnutls_next_no_ticket
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]13965requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
13966requires_config_enabled MBEDTLS_DEBUG_C
13967requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13968requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]13969run_test "TLS 1.3 m->G server with middlebox compat support, not client" \
13970 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS --disable-client-cert" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13971 "$P_CLI debug_level=4" \
Gilles Peskinefc3accd2024-09-13 13:46:37 +0200[diff] [blame]13972 0 \
13973 -c "Protocol is TLSv1.3" \
13974 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
Ronald Crona55c5a12021-11-30 09:32:47 +0100[diff] [blame]13975
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13976requires_gnutls_tls1_3
13977requires_gnutls_next_no_ticket
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13978requires_config_enabled MBEDTLS_DEBUG_C
13979requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]13980requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
13981requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13982run_test "TLS 1.3 m->G both with middlebox compat support" \
13983 "$G_NEXT_SRV --priority=NORMAL:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS --disable-client-cert" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13984 "$P_CLI debug_level=4" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13985 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13986 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13987 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
13988
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]13989requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13990requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
13991requires_config_enabled MBEDTLS_DEBUG_C
13992requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]13993requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13994run_test "TLS 1.3 O->m both peers do not support middlebox compatibility" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]13995 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13996 "$O_NEXT_CLI -msg -debug -no_middlebox" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13997 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]13998 -s "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]13999 -S "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_SERVER_HELLO" \
14000 -C "14 03 03 00 01"
14001
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14002requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14003requires_config_enabled MBEDTLS_DEBUG_C
14004requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14005requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14006requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14007run_test "TLS 1.3 O->m server with middlebox compat support, not client" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14008 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14009 "$O_NEXT_CLI -msg -debug -no_middlebox" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14010 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14011 -s "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14012 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_SERVER_HELLO"
14013
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14014requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14015requires_config_enabled MBEDTLS_DEBUG_C
14016requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14017requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14018requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14019run_test "TLS 1.3 O->m both with middlebox compat support" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14020 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14021 "$O_NEXT_CLI -msg -debug" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14022 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14023 -s "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14024 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_SERVER_HELLO" \
14025 -c "14 03 03 00 01"
14026
14027requires_gnutls_tls1_3
14028requires_gnutls_next_no_ticket
14029requires_gnutls_next_disable_tls13_compat
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14030requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14031requires_config_enabled MBEDTLS_DEBUG_C
14032requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14033requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14034run_test "TLS 1.3 G->m both peers do not support middlebox compatibility" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14035 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14036 "$G_NEXT_CLI localhost --priority=NORMAL:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14037 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14038 -s "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14039 -S "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_SERVER_HELLO" \
14040 -C "SSL 3.3 ChangeCipherSpec packet received"
14041
14042requires_gnutls_tls1_3
14043requires_gnutls_next_no_ticket
14044requires_gnutls_next_disable_tls13_compat
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14045requires_config_enabled MBEDTLS_DEBUG_C
14046requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14047requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14048requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14049run_test "TLS 1.3 G->m server with middlebox compat support, not client" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14050 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14051 "$G_NEXT_CLI localhost --debug=10 --priority=NORMAL:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14052 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14053 -s "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14054 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_SERVER_HELLO" \
14055 -c "SSL 3.3 ChangeCipherSpec packet received" \
14056 -c "discarding change cipher spec in TLS1.3"
14057
14058requires_gnutls_tls1_3
14059requires_gnutls_next_no_ticket
14060requires_gnutls_next_disable_tls13_compat
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14061requires_config_enabled MBEDTLS_DEBUG_C
14062requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14063requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14064requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14065run_test "TLS 1.3 G->m both with middlebox compat support" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14066 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14067 "$G_NEXT_CLI localhost --debug=10 --priority=NORMAL:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14068 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14069 -s "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14070 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_SERVER_HELLO" \
14071 -c "SSL 3.3 ChangeCipherSpec packet received"
14072
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14073requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14074requires_config_enabled MBEDTLS_DEBUG_C
14075requires_config_enabled MBEDTLS_SSL_SRV_C
14076requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14077requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14078run_test "TLS 1.3 m->m HRR both peers do not support middlebox compatibility" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]14079 "$P_SRV debug_level=4 groups=secp384r1 tickets=0" \
14080 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14081 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14082 -s "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14083 -c "Protocol is TLSv1.3" \
14084 -s "tls13 server state: MBEDTLS_SSL_HELLO_RETRY_REQUEST" \
Gabor Mezeif7044ea2022-06-28 16:01:49 +0200[diff] [blame]14085 -S "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_HELLO_RETRY_REQUEST" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14086 -C "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
14087
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14088requires_config_enabled MBEDTLS_DEBUG_C
14089requires_config_enabled MBEDTLS_SSL_SRV_C
14090requires_config_enabled MBEDTLS_SSL_CLI_C
Przemek Stekielc31a7982023-06-27 10:53:33 +0200[diff] [blame]14091requires_config_enabled PSA_WANT_ALG_ECDH
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14092requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14093requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14094run_test "TLS 1.3 m->m HRR both with middlebox compat support" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]14095 "$P_SRV debug_level=4 groups=secp384r1 tickets=0" \
14096 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14097 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14098 -s "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14099 -c "Protocol is TLSv1.3" \
14100 -s "tls13 server state: MBEDTLS_SSL_HELLO_RETRY_REQUEST" \
Gabor Mezeif7044ea2022-06-28 16:01:49 +0200[diff] [blame]14101 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_HELLO_RETRY_REQUEST" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14102 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
14103
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14104requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14105requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14106requires_config_enabled MBEDTLS_DEBUG_C
14107requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14108requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14109run_test "TLS 1.3 m->O HRR both peers do not support middlebox compatibility" \
14110 "$O_NEXT_SRV -msg -tls1_3 -groups P-384 -no_middlebox -num_tickets 0 -no_cache" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]14111 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14112 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14113 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14114 -c "received HelloRetryRequest message" \
14115 -C "ChangeCipherSpec invalid in TLS 1.3 without compatibility mode" \
14116 -C "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
14117
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14118requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14119requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14120requires_config_enabled MBEDTLS_DEBUG_C
14121requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14122requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14123run_test "TLS 1.3 m->O HRR server with middlebox compat support, not client" \
14124 "$O_NEXT_SRV -msg -tls1_3 -groups P-384 -num_tickets 0 -no_cache" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]14125 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Gilles Peskinefc3accd2024-09-13 13:46:37 +0200[diff] [blame]14126 0 \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14127 -c "received HelloRetryRequest message" \
Gilles Peskinefc3accd2024-09-13 13:46:37 +0200[diff] [blame]14128 -c "Protocol is TLSv1.3" \
14129 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14130
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14131requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14132requires_config_enabled MBEDTLS_DEBUG_C
14133requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14134requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14135requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14136run_test "TLS 1.3 m->O HRR both with middlebox compat support" \
14137 "$O_NEXT_SRV -msg -tls1_3 -groups P-384 -num_tickets 0 -no_resume_ephemeral -no_cache" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]14138 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14139 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14140 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14141 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
14142
14143requires_gnutls_tls1_3
14144requires_gnutls_next_no_ticket
14145requires_gnutls_next_disable_tls13_compat
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14146requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14147requires_config_enabled MBEDTLS_DEBUG_C
14148requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14149requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14150run_test "TLS 1.3 m->G HRR both peers do not support middlebox compatibility" \
14151 "$G_NEXT_SRV --priority=NORMAL:-GROUP-ALL:+GROUP-SECP384R1:-VERS-ALL:+VERS-TLS1.3:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE --disable-client-cert" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]14152 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14153 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14154 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14155 -c "received HelloRetryRequest message" \
14156 -C "ChangeCipherSpec invalid in TLS 1.3 without compatibility mode" \
14157 -C "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
14158
14159requires_gnutls_tls1_3
14160requires_gnutls_next_no_ticket
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14161requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14162requires_config_enabled MBEDTLS_DEBUG_C
14163requires_config_enabled MBEDTLS_SSL_CLI_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14164requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14165run_test "TLS 1.3 m->G HRR server with middlebox compat support, not client" \
14166 "$G_NEXT_SRV --priority=NORMAL:-GROUP-ALL:+GROUP-SECP384R1:-VERS-ALL:+VERS-TLS1.3:%NO_TICKETS --disable-client-cert" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]14167 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Gilles Peskinefc3accd2024-09-13 13:46:37 +0200[diff] [blame]14168 0 \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14169 -c "received HelloRetryRequest message" \
Gilles Peskinefc3accd2024-09-13 13:46:37 +0200[diff] [blame]14170 -c "Protocol is TLSv1.3" \
14171 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14172
14173requires_gnutls_tls1_3
14174requires_gnutls_next_no_ticket
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14175requires_config_enabled MBEDTLS_DEBUG_C
14176requires_config_enabled MBEDTLS_SSL_CLI_C
Przemek Stekielc31a7982023-06-27 10:53:33 +0200[diff] [blame]14177requires_config_enabled PSA_WANT_ALG_ECDH
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14178requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14179requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14180run_test "TLS 1.3 m->G HRR both with middlebox compat support" \
14181 "$G_NEXT_SRV --priority=NORMAL:-GROUP-ALL:+GROUP-SECP384R1:-VERS-ALL:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS --disable-client-cert" \
Przemek Stekiel45255e42023-06-29 13:56:36 +0200[diff] [blame]14182 "$P_CLI debug_level=4 groups=secp256r1,secp384r1" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14183 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14184 -c "Protocol is TLSv1.3" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14185 -c "Ignore ChangeCipherSpec in TLS 1.3 compatibility mode"
14186
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14187requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14188requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14189requires_config_enabled MBEDTLS_DEBUG_C
14190requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14191requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14192run_test "TLS 1.3 O->m HRR both peers do not support middlebox compatibility" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14193 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key groups=secp384r1 tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14194 "$O_NEXT_CLI -msg -debug -groups P-256:P-384 -no_middlebox" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14195 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14196 -s "Protocol is TLSv1.3" \
Gabor Mezeif7044ea2022-06-28 16:01:49 +0200[diff] [blame]14197 -S "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_HELLO_RETRY_REQUEST" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14198 -C "14 03 03 00 01"
14199
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14200requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14201requires_config_enabled MBEDTLS_DEBUG_C
14202requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14203requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14204requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14205run_test "TLS 1.3 O->m HRR server with middlebox compat support, not client" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14206 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key groups=secp384r1 tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14207 "$O_NEXT_CLI -msg -debug -groups P-256:P-384 -no_middlebox" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14208 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14209 -s "Protocol is TLSv1.3" \
Gabor Mezeif7044ea2022-06-28 16:01:49 +0200[diff] [blame]14210 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_HELLO_RETRY_REQUEST" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14211
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14212requires_openssl_tls1_3_with_compatible_ephemeral
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14213requires_config_enabled MBEDTLS_DEBUG_C
14214requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14215requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14216requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14217run_test "TLS 1.3 O->m HRR both with middlebox compat support" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14218 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key groups=secp384r1 tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14219 "$O_NEXT_CLI -msg -debug -groups P-256:P-384" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14220 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14221 -s "Protocol is TLSv1.3" \
Gabor Mezeif7044ea2022-06-28 16:01:49 +0200[diff] [blame]14222 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_HELLO_RETRY_REQUEST" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14223 -c "14 03 03 00 01"
14224
14225requires_gnutls_tls1_3
14226requires_gnutls_next_no_ticket
14227requires_gnutls_next_disable_tls13_compat
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14228requires_config_disabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14229requires_config_enabled MBEDTLS_DEBUG_C
14230requires_config_enabled MBEDTLS_SSL_SRV_C
Ronald Cron928cbd32022-10-04 16:14:26 +0200[diff] [blame]14231requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14232run_test "TLS 1.3 G->m HRR both peers do not support middlebox compatibility" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14233 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key groups=secp384r1 tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14234 "$G_NEXT_CLI localhost --priority=NORMAL:-GROUP-ALL:+GROUP-SECP256R1:+GROUP-SECP384R1:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14235 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14236 -s "Protocol is TLSv1.3" \
Gabor Mezeif7044ea2022-06-28 16:01:49 +0200[diff] [blame]14237 -S "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_HELLO_RETRY_REQUEST" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14238 -C "SSL 3.3 ChangeCipherSpec packet received"
14239
14240requires_gnutls_tls1_3
14241requires_gnutls_next_no_ticket
14242requires_gnutls_next_disable_tls13_compat
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14243requires_config_enabled MBEDTLS_DEBUG_C
14244requires_config_enabled MBEDTLS_SSL_SRV_C
Przemek Stekielc31a7982023-06-27 10:53:33 +0200[diff] [blame]14245requires_config_enabled PSA_WANT_ALG_ECDH
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14246requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14247requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14248run_test "TLS 1.3 G->m HRR server with middlebox compat support, not client" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14249 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key groups=secp384r1 tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14250 "$G_NEXT_CLI localhost --debug=10 --priority=NORMAL:-GROUP-ALL:+GROUP-SECP256R1:+GROUP-SECP384R1:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14251 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14252 -s "Protocol is TLSv1.3" \
Gabor Mezeif7044ea2022-06-28 16:01:49 +0200[diff] [blame]14253 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_HELLO_RETRY_REQUEST" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14254 -c "SSL 3.3 ChangeCipherSpec packet received" \
14255 -c "discarding change cipher spec in TLS1.3"
14256
14257requires_gnutls_tls1_3
14258requires_gnutls_next_no_ticket
14259requires_gnutls_next_disable_tls13_compat
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14260requires_config_enabled MBEDTLS_DEBUG_C
14261requires_config_enabled MBEDTLS_SSL_SRV_C
Przemek Stekielc31a7982023-06-27 10:53:33 +0200[diff] [blame]14262requires_config_enabled PSA_WANT_ALG_ECDH
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14263requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
14264requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14265run_test "TLS 1.3 G->m HRR both with middlebox compat support" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14266 "$P_SRV debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key groups=secp384r1 tickets=0" \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14267 "$G_NEXT_CLI localhost --debug=10 --priority=NORMAL:-GROUP-ALL:+GROUP-SECP256R1:+GROUP-SECP384R1:%NO_TICKETS:%DISABLE_TLS13_COMPAT_MODE -V" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14268 0 \
Gabor Mezei9e4b7bd2022-06-28 16:22:14 +0200[diff] [blame]14269 -s "Protocol is TLSv1.3" \
Gabor Mezeif7044ea2022-06-28 16:01:49 +0200[diff] [blame]14270 -s "tls13 server state: MBEDTLS_SSL_SERVER_CCS_AFTER_HELLO_RETRY_REQUEST" \
Gabor Mezei7e2dbaf2022-05-24 16:05:29 +0200[diff] [blame]14271 -c "SSL 3.3 ChangeCipherSpec packet received"
14272
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14273requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14274requires_config_enabled MBEDTLS_DEBUG_C
14275requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14276requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14277run_test "TLS 1.3: Check signature algorithm order, m->O" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14278 "$O_NEXT_SRV_NO_CERT -cert $DATA_FILES_PATH/server2-sha256.crt -key $DATA_FILES_PATH/server2.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14279 -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache
14280 -Verify 10 -sigalgs rsa_pkcs1_sha512:rsa_pss_rsae_sha512:rsa_pss_rsae_sha384:ecdsa_secp256r1_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14281 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key \
Jerry Yu7ac0d492022-07-01 19:29:30 +0800[diff] [blame]14282 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14283 0 \
14284 -c "Protocol is TLSv1.3" \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]14285 -c "CertificateVerify signature with rsa_pss_rsae_sha512" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14286 -c "HTTP/1.0 200 [Oo][Kk]"
14287
14288requires_gnutls_tls1_3
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14289requires_config_enabled MBEDTLS_DEBUG_C
14290requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14291requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14292run_test "TLS 1.3: Check signature algorithm order, m->G" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14293 "$G_NEXT_SRV_NO_CERT --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14294 -d 4
14295 --priority=NORMAL:-VERS-ALL:-SIGN-ALL:+SIGN-RSA-SHA512:+SIGN-RSA-PSS-RSAE-SHA512:+SIGN-RSA-PSS-RSAE-SHA384:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14296 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key \
Jerry Yu7ac0d492022-07-01 19:29:30 +0800[diff] [blame]14297 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14298 0 \
14299 -c "Protocol is TLSv1.3" \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]14300 -c "CertificateVerify signature with rsa_pss_rsae_sha512" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14301 -c "HTTP/1.0 200 [Oo][Kk]"
14302
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14303requires_config_enabled MBEDTLS_DEBUG_C
14304requires_config_enabled MBEDTLS_SSL_SRV_C
14305requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14306requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14307run_test "TLS 1.3: Check signature algorithm order, m->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14308 "$P_SRV debug_level=4 auth_mode=required
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14309 crt_file2=$DATA_FILES_PATH/server2-sha256.crt key_file2=$DATA_FILES_PATH/server2.key
14310 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14311 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256 " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14312 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key \
Jerry Yu7ac0d492022-07-01 19:29:30 +0800[diff] [blame]14313 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14314 0 \
14315 -c "Protocol is TLSv1.3" \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]14316 -c "CertificateVerify signature with rsa_pss_rsae_sha512" \
14317 -s "CertificateVerify signature with rsa_pss_rsae_sha512" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14318 -s "ssl_tls13_pick_key_cert:selected signature algorithm rsa_pss_rsae_sha512" \
14319 -c "HTTP/1.0 200 [Oo][Kk]"
14320
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14321requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14322requires_config_enabled MBEDTLS_DEBUG_C
14323requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14324requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14325run_test "TLS 1.3: Check signature algorithm order, O->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14326 "$P_SRV debug_level=4 auth_mode=required
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14327 crt_file2=$DATA_FILES_PATH/server2-sha256.crt key_file2=$DATA_FILES_PATH/server2.key
14328 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14329 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256 " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14330 "$O_NEXT_CLI_NO_CERT -msg -CAfile $DATA_FILES_PATH/test-ca_cat12.crt \
14331 -cert $DATA_FILES_PATH/server2-sha256.crt -key $DATA_FILES_PATH/server2.key \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14332 -sigalgs rsa_pkcs1_sha512:rsa_pss_rsae_sha512:rsa_pss_rsae_sha384:ecdsa_secp256r1_sha256" \
14333 0 \
14334 -c "TLSv1.3" \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]14335 -s "CertificateVerify signature with rsa_pss_rsae_sha512" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14336 -s "ssl_tls13_pick_key_cert:selected signature algorithm rsa_pss_rsae_sha512"
14337
14338requires_gnutls_tls1_3
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14339requires_config_enabled MBEDTLS_DEBUG_C
14340requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14341requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14342run_test "TLS 1.3: Check signature algorithm order, G->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14343 "$P_SRV debug_level=4 auth_mode=required
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14344 crt_file2=$DATA_FILES_PATH/server2-sha256.crt key_file2=$DATA_FILES_PATH/server2.key
14345 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14346 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256 " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14347 "$G_NEXT_CLI_NO_CERT localhost -d 4 --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt \
14348 --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14349 --priority=NORMAL:-SIGN-ALL:+SIGN-RSA-SHA512:+SIGN-RSA-PSS-RSAE-SHA512:+SIGN-RSA-PSS-RSAE-SHA384" \
14350 0 \
14351 -c "Negotiated version: 3.4" \
14352 -c "HTTP/1.0 200 [Oo][Kk]" \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]14353 -s "CertificateVerify signature with rsa_pss_rsae_sha512" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14354 -s "ssl_tls13_pick_key_cert:selected signature algorithm rsa_pss_rsae_sha512"
14355
14356requires_gnutls_tls1_3
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14357requires_config_enabled MBEDTLS_DEBUG_C
14358requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14359requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14360run_test "TLS 1.3: Check server no suitable signature algorithm, G->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14361 "$P_SRV debug_level=4 auth_mode=required
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14362 crt_file2=$DATA_FILES_PATH/server2-sha256.crt key_file2=$DATA_FILES_PATH/server2.key
14363 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14364 sig_algs=rsa_pkcs1_sha512,ecdsa_secp256r1_sha256 " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14365 "$G_NEXT_CLI_NO_CERT localhost -d 4 --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt \
14366 --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14367 --priority=NORMAL:-SIGN-ALL:+SIGN-RSA-SHA512:+SIGN-RSA-PSS-RSAE-SHA512:+SIGN-ECDSA-SECP521R1-SHA512" \
14368 1 \
Ronald Cron67ea2542022-09-15 17:34:42 +0200[diff] [blame]14369 -S "ssl_tls13_pick_key_cert:check signature algorithm"
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14370
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14371requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14372requires_config_enabled MBEDTLS_DEBUG_C
14373requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14374requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14375run_test "TLS 1.3: Check server no suitable signature algorithm, O->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14376 "$P_SRV debug_level=4 auth_mode=required
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14377 crt_file2=$DATA_FILES_PATH/server2-sha256.crt key_file2=$DATA_FILES_PATH/server2.key
14378 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14379 sig_algs=rsa_pkcs1_sha512,ecdsa_secp256r1_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14380 "$O_NEXT_CLI_NO_CERT -msg -CAfile $DATA_FILES_PATH/test-ca_cat12.crt \
14381 -cert $DATA_FILES_PATH/server2-sha256.crt -key $DATA_FILES_PATH/server2.key \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14382 -sigalgs rsa_pkcs1_sha512:rsa_pss_rsae_sha512:ecdsa_secp521r1_sha512" \
14383 1 \
Ronald Cron67ea2542022-09-15 17:34:42 +0200[diff] [blame]14384 -S "ssl_tls13_pick_key_cert:check signature algorithm"
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14385
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14386requires_config_enabled MBEDTLS_DEBUG_C
14387requires_config_enabled MBEDTLS_SSL_SRV_C
14388requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14389requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14390run_test "TLS 1.3: Check server no suitable signature algorithm, m->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14391 "$P_SRV debug_level=4 auth_mode=required
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14392 crt_file2=$DATA_FILES_PATH/server2-sha256.crt key_file2=$DATA_FILES_PATH/server2.key
14393 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14394 sig_algs=rsa_pkcs1_sha512,ecdsa_secp256r1_sha256 " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14395 "$P_CLI allow_sha1=0 debug_level=4 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key \
Jerry Yu7ac0d492022-07-01 19:29:30 +0800[diff] [blame]14396 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,ecdsa_secp521r1_sha512" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14397 1 \
Ronald Cron67ea2542022-09-15 17:34:42 +0200[diff] [blame]14398 -S "ssl_tls13_pick_key_cert:check signature algorithm"
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14399
14400requires_gnutls_tls1_3
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14401requires_config_enabled MBEDTLS_DEBUG_C
14402requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14403requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14404run_test "TLS 1.3: Check server no suitable certificate, G->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14405 "$P_SRV debug_level=4
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14406 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14407 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256 " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14408 "$G_NEXT_CLI_NO_CERT localhost -d 4 --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14409 --priority=NORMAL:-SIGN-ALL:+SIGN-ECDSA-SECP521R1-SHA512:+SIGN-ECDSA-SECP256R1-SHA256" \
14410 1 \
14411 -s "ssl_tls13_pick_key_cert:no suitable certificate found"
14412
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14413requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14414requires_config_enabled MBEDTLS_DEBUG_C
14415requires_config_enabled MBEDTLS_SSL_SRV_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14416requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14417run_test "TLS 1.3: Check server no suitable certificate, O->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14418 "$P_SRV debug_level=4
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14419 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14420 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256 " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14421 "$O_NEXT_CLI_NO_CERT -msg -CAfile $DATA_FILES_PATH/test-ca_cat12.crt \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14422 -sigalgs ecdsa_secp521r1_sha512:ecdsa_secp256r1_sha256" \
14423 1 \
14424 -s "ssl_tls13_pick_key_cert:no suitable certificate found"
14425
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14426requires_config_enabled MBEDTLS_DEBUG_C
14427requires_config_enabled MBEDTLS_SSL_SRV_C
14428requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14429requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14430run_test "TLS 1.3: Check server no suitable certificate, m->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14431 "$P_SRV debug_level=4
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14432 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14433 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256 " \
14434 "$P_CLI allow_sha1=0 debug_level=4 \
Jerry Yu7ac0d492022-07-01 19:29:30 +0800[diff] [blame]14435 sig_algs=ecdsa_secp521r1_sha512,ecdsa_secp256r1_sha256" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14436 1 \
14437 -s "ssl_tls13_pick_key_cert:no suitable certificate found"
14438
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14439requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14440requires_config_enabled MBEDTLS_DEBUG_C
14441requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14442requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14443run_test "TLS 1.3: Check client no signature algorithm, m->O" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14444 "$O_NEXT_SRV_NO_CERT -cert $DATA_FILES_PATH/server2-sha256.crt -key $DATA_FILES_PATH/server2.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14445 -msg -tls1_3 -num_tickets 0 -no_resume_ephemeral -no_cache
14446 -Verify 10 -sigalgs rsa_pkcs1_sha512:rsa_pss_rsae_sha512:rsa_pss_rsae_sha384:ecdsa_secp521r1_sha512" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14447 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
Jerry Yu7ac0d492022-07-01 19:29:30 +0800[diff] [blame]14448 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14449 1 \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]14450 -c "no suitable signature algorithm"
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14451
14452requires_gnutls_tls1_3
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14453requires_config_enabled MBEDTLS_DEBUG_C
14454requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14455requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14456run_test "TLS 1.3: Check client no signature algorithm, m->G" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14457 "$G_NEXT_SRV_NO_CERT --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14458 -d 4
14459 --priority=NORMAL:-VERS-ALL:-SIGN-ALL:+SIGN-RSA-SHA512:+SIGN-RSA-PSS-RSAE-SHA512:+SIGN-RSA-PSS-RSAE-SHA384:+VERS-TLS1.3:+CIPHER-ALL:%NO_TICKETS " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14460 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
Jerry Yu7ac0d492022-07-01 19:29:30 +0800[diff] [blame]14461 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14462 1 \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]14463 -c "no suitable signature algorithm"
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14464
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14465requires_config_enabled MBEDTLS_DEBUG_C
14466requires_config_enabled MBEDTLS_SSL_SRV_C
14467requires_config_enabled MBEDTLS_SSL_CLI_C
Gilles Peskine365296a2024-09-13 14:15:46 +0200[diff] [blame]14468requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14469run_test "TLS 1.3: Check client no signature algorithm, m->m" \
Ronald Cron50ae84e2023-03-14 08:59:56 +0100[diff] [blame]14470 "$P_SRV debug_level=4 auth_mode=required
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14471 crt_file2=$DATA_FILES_PATH/server2-sha256.crt key_file2=$DATA_FILES_PATH/server2.key
14472 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14473 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp521r1_sha512" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14474 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server5.crt key_file=$DATA_FILES_PATH/server5.key \
Jerry Yu7ac0d492022-07-01 19:29:30 +0800[diff] [blame]14475 sig_algs=rsa_pkcs1_sha512,rsa_pss_rsae_sha512,rsa_pss_rsae_sha384,ecdsa_secp256r1_sha256" \
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14476 1 \
Ronald Cron067a1e72022-09-16 13:44:49 +0200[diff] [blame]14477 -c "no suitable signature algorithm"
Jerry Yuaae28f12022-06-29 16:21:32 +0800[diff] [blame]14478
Przemek Stekiel8bfe8972023-06-26 12:59:45 +0200[diff] [blame]14479requires_openssl_tls1_3_with_compatible_ephemeral
Jerry Yu6455b682022-06-27 14:18:29 +0800[diff] [blame]14480requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
14481requires_config_enabled MBEDTLS_DEBUG_C
14482requires_config_enabled MBEDTLS_SSL_CLI_C
Jerry Yueec4f032022-07-23 11:31:51 +0800[diff] [blame]14483run_test "TLS 1.2: Check rsa_pss_rsae compatibility issue, m->O" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14484 "$O_NEXT_SRV_NO_CERT -cert $DATA_FILES_PATH/server2-sha256.crt -key $DATA_FILES_PATH/server2.key
Jerry Yu6455b682022-06-27 14:18:29 +0800[diff] [blame]14485 -msg -tls1_2
14486 -Verify 10 " \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14487 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key
Jerry Yu6455b682022-06-27 14:18:29 +0800[diff] [blame]14488 sig_algs=rsa_pss_rsae_sha512,rsa_pkcs1_sha512
14489 min_version=tls12 max_version=tls13 " \
14490 0 \
14491 -c "Protocol is TLSv1.2" \
14492 -c "HTTP/1.0 200 [Oo][Kk]"
14493
14494
14495requires_gnutls_tls1_3
14496requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
14497requires_config_enabled MBEDTLS_DEBUG_C
14498requires_config_enabled MBEDTLS_SSL_CLI_C
Jerry Yueec4f032022-07-23 11:31:51 +0800[diff] [blame]14499run_test "TLS 1.2: Check rsa_pss_rsae compatibility issue, m->G" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14500 "$G_NEXT_SRV_NO_CERT --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key
Jerry Yu6455b682022-06-27 14:18:29 +0800[diff] [blame]14501 -d 4
14502 --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14503 "$P_CLI debug_level=4 crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key
Jerry Yu6455b682022-06-27 14:18:29 +0800[diff] [blame]14504 sig_algs=rsa_pss_rsae_sha512,rsa_pkcs1_sha512
14505 min_version=tls12 max_version=tls13 " \
14506 0 \
14507 -c "Protocol is TLSv1.2" \
14508 -c "HTTP/1.0 200 [Oo][Kk]"
14509
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14510requires_config_enabled MBEDTLS_SSL_SRV_C
14511requires_config_enabled MBEDTLS_DEBUG_C
14512requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14513requires_config_enabled MBEDTLS_X509_RSASSA_PSS_SUPPORT
14514requires_config_enabled PSA_WANT_ALG_FFDH
Valerio Setti05754d82024-01-18 09:47:00 +0100[diff] [blame]14515requires_config_enabled PSA_WANT_DH_RFC7919_3072
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14516requires_gnutls_tls1_3
14517requires_gnutls_next_no_ticket
14518requires_gnutls_next_disable_tls13_compat
14519run_test "TLS 1.3 G->m: AES_128_GCM_SHA256,ffdhe3072,rsa_pss_rsae_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14520 "$P_SRV crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key debug_level=4 force_ciphersuite=TLS1-3-AES-128-GCM-SHA256 sig_algs=rsa_pss_rsae_sha256 groups=ffdhe3072 tls13_kex_modes=ephemeral cookies=0 tickets=0" \
14521 "$G_NEXT_CLI_NO_CERT --debug=4 --single-key-share --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt --priority=NONE:+AES-128-GCM:+SHA256:+AEAD:+SIGN-RSA-PSS-RSAE-SHA256:+GROUP-FFDHE3072:+VERS-TLS1.3:%NO_TICKETS" \
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14522 0 \
14523 -s "Protocol is TLSv1.3" \
14524 -s "server hello, chosen ciphersuite: TLS1-3-AES-128-GCM-SHA256 ( id=4865 )" \
14525 -s "received signature algorithm: 0x804" \
14526 -s "got named group: ffdhe3072(0101)" \
14527 -s "Certificate verification was skipped" \
14528 -C "received HelloRetryRequest message"
14529
14530
14531requires_gnutls_tls1_3
14532requires_gnutls_next_no_ticket
14533requires_gnutls_next_disable_tls13_compat
14534requires_config_enabled MBEDTLS_SSL_CLI_C
14535requires_config_enabled MBEDTLS_DEBUG_C
14536requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14537requires_config_enabled MBEDTLS_X509_RSASSA_PSS_SUPPORT
14538requires_config_enabled PSA_WANT_ALG_FFDH
Valerio Setti05754d82024-01-18 09:47:00 +0100[diff] [blame]14539requires_config_enabled PSA_WANT_DH_RFC7919_3072
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14540run_test "TLS 1.3 m->G: AES_128_GCM_SHA256,ffdhe3072,rsa_pss_rsae_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14541 "$G_NEXT_SRV_NO_CERT --http --disable-client-cert --debug=4 --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key --priority=NONE:+AES-128-GCM:+SHA256:+AEAD:+SIGN-RSA-PSS-RSAE-SHA256:+GROUP-FFDHE3072:+VERS-TLS1.3:%NO_TICKETS" \
14542 "$P_CLI ca_file=$DATA_FILES_PATH/test-ca_cat12.crt debug_level=4 force_ciphersuite=TLS1-3-AES-128-GCM-SHA256 sig_algs=rsa_pss_rsae_sha256 groups=ffdhe3072" \
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14543 0 \
14544 -c "HTTP/1.0 200 OK" \
14545 -c "Protocol is TLSv1.3" \
14546 -c "server hello, chosen ciphersuite: ( 1301 ) - TLS1-3-AES-128-GCM-SHA256" \
14547 -c "Certificate Verify: Signature algorithm ( 0804 )" \
14548 -c "NamedGroup: ffdhe3072 ( 101 )" \
14549 -c "Verifying peer X.509 certificate... ok" \
14550 -C "received HelloRetryRequest message"
14551
14552requires_config_enabled MBEDTLS_SSL_SRV_C
14553requires_config_enabled MBEDTLS_DEBUG_C
14554requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14555requires_config_enabled MBEDTLS_X509_RSASSA_PSS_SUPPORT
14556requires_config_enabled PSA_WANT_ALG_FFDH
Valerio Setti05754d82024-01-18 09:47:00 +0100[diff] [blame]14557requires_config_enabled PSA_WANT_DH_RFC7919_4096
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14558requires_gnutls_tls1_3
14559requires_gnutls_next_no_ticket
14560requires_gnutls_next_disable_tls13_compat
14561run_test "TLS 1.3 G->m: AES_128_GCM_SHA256,ffdhe4096,rsa_pss_rsae_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14562 "$P_SRV crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key debug_level=4 force_ciphersuite=TLS1-3-AES-128-GCM-SHA256 sig_algs=rsa_pss_rsae_sha256 groups=ffdhe4096 tls13_kex_modes=ephemeral cookies=0 tickets=0" \
14563 "$G_NEXT_CLI_NO_CERT --debug=4 --single-key-share --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt --priority=NONE:+AES-128-GCM:+SHA256:+AEAD:+SIGN-RSA-PSS-RSAE-SHA256:+GROUP-FFDHE4096:+VERS-TLS1.3:%NO_TICKETS" \
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14564 0 \
14565 -s "Protocol is TLSv1.3" \
14566 -s "server hello, chosen ciphersuite: TLS1-3-AES-128-GCM-SHA256 ( id=4865 )" \
14567 -s "received signature algorithm: 0x804" \
14568 -s "got named group: ffdhe4096(0102)" \
14569 -s "Certificate verification was skipped" \
14570 -C "received HelloRetryRequest message"
14571
14572
14573requires_gnutls_tls1_3
14574requires_gnutls_next_no_ticket
14575requires_gnutls_next_disable_tls13_compat
14576requires_config_enabled MBEDTLS_SSL_CLI_C
14577requires_config_enabled MBEDTLS_DEBUG_C
14578requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14579requires_config_enabled MBEDTLS_X509_RSASSA_PSS_SUPPORT
14580requires_config_enabled PSA_WANT_ALG_FFDH
Valerio Setti05754d82024-01-18 09:47:00 +0100[diff] [blame]14581requires_config_enabled PSA_WANT_DH_RFC7919_4096
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14582run_test "TLS 1.3 m->G: AES_128_GCM_SHA256,ffdhe4096,rsa_pss_rsae_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14583 "$G_NEXT_SRV_NO_CERT --http --disable-client-cert --debug=4 --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key --priority=NONE:+AES-128-GCM:+SHA256:+AEAD:+SIGN-RSA-PSS-RSAE-SHA256:+GROUP-FFDHE4096:+VERS-TLS1.3:%NO_TICKETS" \
14584 "$P_CLI ca_file=$DATA_FILES_PATH/test-ca_cat12.crt debug_level=4 force_ciphersuite=TLS1-3-AES-128-GCM-SHA256 sig_algs=rsa_pss_rsae_sha256 groups=ffdhe4096" \
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14585 0 \
14586 -c "HTTP/1.0 200 OK" \
14587 -c "Protocol is TLSv1.3" \
14588 -c "server hello, chosen ciphersuite: ( 1301 ) - TLS1-3-AES-128-GCM-SHA256" \
14589 -c "Certificate Verify: Signature algorithm ( 0804 )" \
14590 -c "NamedGroup: ffdhe4096 ( 102 )" \
14591 -c "Verifying peer X.509 certificate... ok" \
14592 -C "received HelloRetryRequest message"
14593
14594requires_config_enabled MBEDTLS_SSL_SRV_C
14595requires_config_enabled MBEDTLS_DEBUG_C
14596requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14597requires_config_enabled MBEDTLS_X509_RSASSA_PSS_SUPPORT
14598requires_config_enabled PSA_WANT_ALG_FFDH
Valerio Setti05754d82024-01-18 09:47:00 +0100[diff] [blame]14599requires_config_enabled PSA_WANT_DH_RFC7919_6144
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14600requires_gnutls_tls1_3
14601requires_gnutls_next_no_ticket
14602requires_gnutls_next_disable_tls13_compat
Gilles Peskine6bdebfe2024-10-31 18:52:40 +0100[diff] [blame]14603# Tests using FFDH with a large prime take a long time to run with a memory
14604# sanitizer. GnuTLS <=3.8.1 has a hard-coded timeout and gives up after
14605# 30s (since 3.8.1, it can be configured with --timeout). We've observed
14606# 8192-bit FFDH test cases failing intermittently on heavily loaded CI
14607# executors (https://github.com/Mbed-TLS/mbedtls/issues/9742),
14608# when using MSan. As a workaround, skip them.
14609# Also skip 6144-bit FFDH to have a bit of safety margin.
14610not_with_msan_or_valgrind
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14611run_test "TLS 1.3 G->m: AES_128_GCM_SHA256,ffdhe6144,rsa_pss_rsae_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14612 "$P_SRV crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key debug_level=4 force_ciphersuite=TLS1-3-AES-128-GCM-SHA256 sig_algs=rsa_pss_rsae_sha256 groups=ffdhe6144 tls13_kex_modes=ephemeral cookies=0 tickets=0" \
14613 "$G_NEXT_CLI_NO_CERT --debug=4 --single-key-share --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt --priority=NONE:+AES-128-GCM:+SHA256:+AEAD:+SIGN-RSA-PSS-RSAE-SHA256:+GROUP-FFDHE6144:+VERS-TLS1.3:%NO_TICKETS" \
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14614 0 \
14615 -s "Protocol is TLSv1.3" \
14616 -s "server hello, chosen ciphersuite: TLS1-3-AES-128-GCM-SHA256 ( id=4865 )" \
14617 -s "received signature algorithm: 0x804" \
14618 -s "got named group: ffdhe6144(0103)" \
14619 -s "Certificate verification was skipped" \
14620 -C "received HelloRetryRequest message"
14621
14622requires_gnutls_tls1_3
14623requires_gnutls_next_no_ticket
14624requires_gnutls_next_disable_tls13_compat
14625requires_config_enabled MBEDTLS_SSL_CLI_C
14626requires_config_enabled MBEDTLS_DEBUG_C
14627requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14628requires_config_enabled MBEDTLS_X509_RSASSA_PSS_SUPPORT
14629requires_config_enabled PSA_WANT_ALG_FFDH
Valerio Setti05754d82024-01-18 09:47:00 +0100[diff] [blame]14630requires_config_enabled PSA_WANT_DH_RFC7919_6144
Gilles Peskine6bdebfe2024-10-31 18:52:40 +0100[diff] [blame]14631not_with_msan_or_valgrind
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14632run_test "TLS 1.3 m->G: AES_128_GCM_SHA256,ffdhe6144,rsa_pss_rsae_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14633 "$G_NEXT_SRV_NO_CERT --http --disable-client-cert --debug=4 --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key --priority=NONE:+AES-128-GCM:+SHA256:+AEAD:+SIGN-RSA-PSS-RSAE-SHA256:+GROUP-FFDHE6144:+VERS-TLS1.3:%NO_TICKETS" \
14634 "$P_CLI ca_file=$DATA_FILES_PATH/test-ca_cat12.crt debug_level=4 force_ciphersuite=TLS1-3-AES-128-GCM-SHA256 sig_algs=rsa_pss_rsae_sha256 groups=ffdhe6144" \
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14635 0 \
14636 -c "HTTP/1.0 200 OK" \
14637 -c "Protocol is TLSv1.3" \
14638 -c "server hello, chosen ciphersuite: ( 1301 ) - TLS1-3-AES-128-GCM-SHA256" \
14639 -c "Certificate Verify: Signature algorithm ( 0804 )" \
14640 -c "NamedGroup: ffdhe6144 ( 103 )" \
14641 -c "Verifying peer X.509 certificate... ok" \
14642 -C "received HelloRetryRequest message"
14643
14644requires_config_enabled MBEDTLS_SSL_SRV_C
14645requires_config_enabled MBEDTLS_DEBUG_C
14646requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14647requires_config_enabled MBEDTLS_X509_RSASSA_PSS_SUPPORT
14648requires_config_enabled PSA_WANT_ALG_FFDH
Valerio Setti05754d82024-01-18 09:47:00 +0100[diff] [blame]14649requires_config_enabled PSA_WANT_DH_RFC7919_8192
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14650requires_gnutls_tls1_3
14651requires_gnutls_next_no_ticket
14652requires_gnutls_next_disable_tls13_compat
Gilles Peskine6bdebfe2024-10-31 18:52:40 +0100[diff] [blame]14653not_with_msan_or_valgrind
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14654client_needs_more_time 4
14655run_test "TLS 1.3 G->m: AES_128_GCM_SHA256,ffdhe8192,rsa_pss_rsae_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14656 "$P_SRV crt_file=$DATA_FILES_PATH/server2-sha256.crt key_file=$DATA_FILES_PATH/server2.key debug_level=4 force_ciphersuite=TLS1-3-AES-128-GCM-SHA256 sig_algs=rsa_pss_rsae_sha256 groups=ffdhe8192 tls13_kex_modes=ephemeral cookies=0 tickets=0" \
14657 "$G_NEXT_CLI_NO_CERT --debug=4 --single-key-share --x509cafile $DATA_FILES_PATH/test-ca_cat12.crt --priority=NONE:+AES-128-GCM:+SHA256:+AEAD:+SIGN-RSA-PSS-RSAE-SHA256:+GROUP-FFDHE8192:+VERS-TLS1.3:%NO_TICKETS" \
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14658 0 \
14659 -s "Protocol is TLSv1.3" \
14660 -s "server hello, chosen ciphersuite: TLS1-3-AES-128-GCM-SHA256 ( id=4865 )" \
14661 -s "received signature algorithm: 0x804" \
14662 -s "got named group: ffdhe8192(0104)" \
14663 -s "Certificate verification was skipped" \
14664 -C "received HelloRetryRequest message"
14665
14666requires_gnutls_tls1_3
14667requires_gnutls_next_no_ticket
14668requires_gnutls_next_disable_tls13_compat
14669requires_config_enabled MBEDTLS_SSL_CLI_C
14670requires_config_enabled MBEDTLS_DEBUG_C
14671requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14672requires_config_enabled MBEDTLS_X509_RSASSA_PSS_SUPPORT
14673requires_config_enabled PSA_WANT_ALG_FFDH
Valerio Setti05754d82024-01-18 09:47:00 +0100[diff] [blame]14674requires_config_enabled PSA_WANT_DH_RFC7919_8192
Gilles Peskine6bdebfe2024-10-31 18:52:40 +0100[diff] [blame]14675not_with_msan_or_valgrind
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14676client_needs_more_time 4
14677run_test "TLS 1.3 m->G: AES_128_GCM_SHA256,ffdhe8192,rsa_pss_rsae_sha256" \
David Horstmann5ab92be2024-07-01 17:01:28 +0100[diff] [blame]14678 "$G_NEXT_SRV_NO_CERT --http --disable-client-cert --debug=4 --x509certfile $DATA_FILES_PATH/server2-sha256.crt --x509keyfile $DATA_FILES_PATH/server2.key --priority=NONE:+AES-128-GCM:+SHA256:+AEAD:+SIGN-RSA-PSS-RSAE-SHA256:+GROUP-FFDHE8192:+VERS-TLS1.3:%NO_TICKETS" \
14679 "$P_CLI ca_file=$DATA_FILES_PATH/test-ca_cat12.crt debug_level=4 force_ciphersuite=TLS1-3-AES-128-GCM-SHA256 sig_algs=rsa_pss_rsae_sha256 groups=ffdhe8192" \
Przemek Stekiel3484db42023-06-28 13:31:38 +0200[diff] [blame]14680 0 \
14681 -c "HTTP/1.0 200 OK" \
14682 -c "Protocol is TLSv1.3" \
14683 -c "server hello, chosen ciphersuite: ( 1301 ) - TLS1-3-AES-128-GCM-SHA256" \
14684 -c "Certificate Verify: Signature algorithm ( 0804 )" \
14685 -c "NamedGroup: ffdhe8192 ( 104 )" \
14686 -c "Verifying peer X.509 certificate... ok" \
14687 -C "received HelloRetryRequest message"
14688
Ronald Cron8a74f072023-06-14 17:59:29 +0200[diff] [blame]14689requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
14690requires_config_enabled MBEDTLS_SSL_SRV_C
14691requires_config_enabled MBEDTLS_SSL_CLI_C
14692requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED
14693requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
14694run_test "TLS 1.3: no HRR in case of PSK key exchange mode" \
Gilles Peskineabb1c222024-05-13 21:06:26 +0200[diff] [blame]14695 "$P_SRV nbio=2 psk=73776f726466697368 psk_identity=0a0b0c tls13_kex_modes=psk groups=none" \
14696 "$P_CLI nbio=2 debug_level=3 psk=73776f726466697368 psk_identity=0a0b0c tls13_kex_modes=all" \
Ronald Cron8a74f072023-06-14 17:59:29 +0200[diff] [blame]14697 0 \
14698 -C "received HelloRetryRequest message" \
14699 -c "Selected key exchange mode: psk$" \
14700 -c "HTTP/1.0 200 OK"
14701
Waleed Elmelegy790f3b12024-07-04 16:38:04 +0000[diff] [blame]14702# Legacy_compression_methods testing
14703
14704requires_gnutls
Waleed Elmelegy38c87572024-07-15 17:25:04 +0000[diff] [blame]14705requires_config_enabled MBEDTLS_SSL_SRV_C
Waleed Elmelegy790f3b12024-07-04 16:38:04 +0000[diff] [blame]14706requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Waleed Elmelegy38c87572024-07-15 17:25:04 +0000[diff] [blame]14707run_test "TLS 1.2 ClientHello indicating support for deflate compression method" \
14708 "$P_SRV debug_level=3" \
14709 "$G_CLI --priority=NORMAL:-VERS-ALL:+VERS-TLS1.2:+COMP-DEFLATE localhost" \
14710 0 \
14711 -c "Handshake was completed" \
14712 -s "dumping .client hello, compression. (2 bytes)"
Waleed Elmelegy790f3b12024-07-04 16:38:04 +0000[diff] [blame]14713
Waleed Elmelegy29581ce2025-01-24 17:39:58 +0000[diff] [blame]14714# Handshake defragmentation testing
Minos Galanakise6dbf492025-02-18 17:28:27 +0000[diff] [blame]14715
Gilles Peskine8ef2e742025-03-01 14:26:51 +0100[diff] [blame]14716# Most test cases are in opt-testcases/handshake-generated.sh
Minos Galanakis79693bf2025-02-18 17:41:18 +0000[diff] [blame]14717
Minos Galanakis79693bf2025-02-18 17:41:18 +0000[diff] [blame]14718requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Minos Galanakis79693bf2025-02-18 17:41:18 +0000[diff] [blame]14719requires_certificate_authentication
Minos Galanakis1e6438d2025-02-12 16:20:01 +0000[diff] [blame]14720run_test "Handshake defragmentation on server: len=32, TLS 1.2 ClientHello (unsupported)" \
Minos Galanakis79693bf2025-02-18 17:41:18 +0000[diff] [blame]14721 "$P_SRV debug_level=4 force_version=tls12 auth_mode=required" \
14722 "$O_NEXT_CLI -tls1_2 -split_send_frag 32 -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key" \
14723 1 \
14724 -s "The SSL configuration is tls12 only" \
14725 -s "bad client hello message" \
14726 -s "SSL - A message could not be parsed due to a syntactic error"
14727
Minos Galanakis44c1c5f2025-03-11 14:06:38 +0000[diff] [blame]14728# Test server-side buffer resizing with fragmented handshake on TLS1.2
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14729requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Minos Galanakis1e6438d2025-02-12 16:20:01 +0000[diff] [blame]14730requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
14731requires_config_enabled MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
14732requires_max_content_len 1025
Minos Galanakis620e8c22025-03-11 17:08:01 +0000[diff] [blame]14733run_test "Handshake defragmentation on server: len=256, buffer resizing with MFL=1024" \
Minos Galanakis1e6438d2025-02-12 16:20:01 +0000[diff] [blame]14734 "$P_SRV debug_level=4 auth_mode=required" \
14735 "$O_NEXT_CLI -tls1_2 -split_send_frag 256 -maxfraglen 1024 -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key" \
14736 0 \
14737 -s "Reallocating in_buf" \
14738 -s "Reallocating out_buf" \
14739 -s "reassembled record" \
Minos Galanakis135aed52025-03-11 17:00:45 +0000[diff] [blame]14740 -s "initial handshake fragment: 256, 0\\.\\.256 of [0-9]\\+" \
14741 -s "Prepare: waiting for more handshake fragments 256/" \
14742 -s "Consume: waiting for more handshake fragments 256/"
Minos Galanakis1e6438d2025-02-12 16:20:01 +0000[diff] [blame]14743
Minos Galanakis44c1c5f2025-03-11 14:06:38 +0000[diff] [blame]14744# Test client-initiated renegotiation with fragmented handshake on TLS1.2
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14745requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Minos Galanakisc4595a42025-02-12 18:23:09 +0000[diff] [blame]14746requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Minos Galanakis5c6d3172025-03-18 10:25:24 +0000[diff] [blame]14747run_test "Handshake defragmentation on server: len=512, client-initiated renegotiation" \
Minos Galanakisc4595a42025-02-12 18:23:09 +0000[diff] [blame]14748 "$P_SRV debug_level=4 exchanges=2 renegotiation=1 auth_mode=required" \
Minos Galanakis27988882025-03-11 17:29:33 +0000[diff] [blame]14749 "$O_NEXT_CLI_RENEGOTIATE -tls1_2 -split_send_frag 512 -connect 127.0.0.1:+$SRV_PORT" \
Minos Galanakisc4595a42025-02-12 18:23:09 +0000[diff] [blame]14750 0 \
14751 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
14752 -s "found renegotiation extension" \
14753 -s "server hello, secure renegotiation extension" \
14754 -s "=> renegotiate" \
14755 -S "write hello request" \
14756 -s "reassembled record" \
Minos Galanakis135aed52025-03-11 17:00:45 +0000[diff] [blame]14757 -s "initial handshake fragment: 512, 0\\.\\.512 of [0-9]\\+" \
14758 -s "Prepare: waiting for more handshake fragments 512/" \
14759 -s "Consume: waiting for more handshake fragments 512/" \
Minos Galanakisc4595a42025-02-12 18:23:09 +0000[diff] [blame]14760
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14761requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Minos Galanakisa37a9362025-03-06 15:09:39 +0000[diff] [blame]14762requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Minos Galanakis5c6d3172025-03-18 10:25:24 +0000[diff] [blame]14763run_test "Handshake defragmentation on server: len=256, client-initiated renegotiation" \
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14764 "$P_SRV debug_level=4 exchanges=2 renegotiation=1 auth_mode=required" \
Minos Galanakis27988882025-03-11 17:29:33 +0000[diff] [blame]14765 "$O_NEXT_CLI_RENEGOTIATE -tls1_2 -split_send_frag 256 -connect 127.0.0.1:+$SRV_PORT" \
Minos Galanakisa37a9362025-03-06 15:09:39 +0000[diff] [blame]14766 0 \
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14767 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
14768 -s "found renegotiation extension" \
14769 -s "server hello, secure renegotiation extension" \
14770 -s "=> renegotiate" \
14771 -S "write hello request" \
14772 -s "reassembled record" \
Minos Galanakis135aed52025-03-11 17:00:45 +0000[diff] [blame]14773 -s "initial handshake fragment: 256, 0\\.\\.256 of [0-9]\\+" \
14774 -s "Prepare: waiting for more handshake fragments 256/" \
14775 -s "Consume: waiting for more handshake fragments 256/" \
Minos Galanakisa37a9362025-03-06 15:09:39 +0000[diff] [blame]14776
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14777requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
14778requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14779requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Minos Galanakis5c6d3172025-03-18 10:25:24 +0000[diff] [blame]14780run_test "Handshake defragmentation on server: len=128, client-initiated renegotiation" \
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14781 "$P_SRV debug_level=4 exchanges=2 renegotiation=1 auth_mode=required" \
Minos Galanakis27988882025-03-11 17:29:33 +0000[diff] [blame]14782 "$O_NEXT_CLI_RENEGOTIATE -tls1_2 -split_send_frag 128 -connect 127.0.0.1:+$SRV_PORT" \
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14783 0 \
14784 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
14785 -s "found renegotiation extension" \
14786 -s "server hello, secure renegotiation extension" \
14787 -s "=> renegotiate" \
14788 -S "write hello request" \
14789 -s "reassembled record" \
Minos Galanakis135aed52025-03-11 17:00:45 +0000[diff] [blame]14790 -s "initial handshake fragment: 128, 0\\.\\.128 of [0-9]\\+" \
14791 -s "Prepare: waiting for more handshake fragments 128/" \
14792 -s "Consume: waiting for more handshake fragments 128/" \
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14793
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14794requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
14795requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
14796requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Minos Galanakis5c6d3172025-03-18 10:25:24 +0000[diff] [blame]14797run_test "Handshake defragmentation on server: len=4, client-initiated renegotiation" \
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14798 "$P_SRV debug_level=4 exchanges=2 renegotiation=1 auth_mode=required" \
Minos Galanakis27988882025-03-11 17:29:33 +0000[diff] [blame]14799 "$O_NEXT_CLI_RENEGOTIATE -tls1_2 -split_send_frag 4 -connect 127.0.0.1:+$SRV_PORT" \
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14800 0 \
14801 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
14802 -s "found renegotiation extension" \
14803 -s "server hello, secure renegotiation extension" \
14804 -s "=> renegotiate" \
14805 -S "write hello request" \
14806 -s "reassembled record" \
Minos Galanakis135aed52025-03-11 17:00:45 +0000[diff] [blame]14807 -s "initial handshake fragment: 4, 0\\.\\.4 of [0-9]\\+" \
14808 -s "Prepare: waiting for more handshake fragments 4/" \
14809 -s "Consume: waiting for more handshake fragments 4/" \
Minos Galanakis9d785472025-03-11 14:19:48 +0000[diff] [blame]14810
Minos Galanakise61d0e92025-03-12 01:07:58 +0000[diff] [blame]14811requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
14812requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
14813requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Minos Galanakis5c6d3172025-03-18 10:25:24 +0000[diff] [blame]14814run_test "Handshake defragmentation on server: len=4, client-initiated server-rejected renegotiation" \
Minos Galanakise61d0e92025-03-12 01:07:58 +0000[diff] [blame]14815 "$P_SRV debug_level=4 exchanges=2 renegotiation=0 auth_mode=required" \
14816 "$O_NEXT_CLI_RENEGOTIATE -tls1_2 -split_send_frag 4 -connect 127.0.0.1:+$SRV_PORT" \
14817 1 \
14818 -s "received TLS_EMPTY_RENEGOTIATION_INFO" \
14819 -s "refusing renegotiation, sending alert" \
14820 -s "server hello, secure renegotiation extension" \
14821 -s "initial handshake fragment: 4, 0\\.\\.4 of [0-9]\\+" \
14822 -s "Prepare: waiting for more handshake fragments 4/" \
14823 -s "Consume: waiting for more handshake fragments 4/" \
14824
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14825# Test server-initiated renegotiation with fragmented handshake on TLS1.2
Minos Galanakis6c129c32025-03-18 10:31:37 +0000[diff] [blame]14826
14827# Note: The /reneg endpoint serves as a directive for OpenSSL's s_server
14828# to initiate a handshake renegotiation.
14829# Note: Adjusting the renegotiation delay beyond the library's default
14830# value of 16 is necessary. This parameter defines the maximum
14831# number of records received before renegotiation is completed.
14832# By fragmenting records and thereby increasing their quantity,
14833# the default threshold can be reached more quickly.
14834# Setting it to -1 disables that policy's enforment.
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14835requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Minos Galanakisa37a9362025-03-06 15:09:39 +0000[diff] [blame]14836requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Minos Galanakis5c6d3172025-03-18 10:25:24 +0000[diff] [blame]14837run_test "Handshake defragmentation on client: len=512, server-initiated renegotiation" \
Minos Galanakis2a1eacc2025-03-11 17:24:04 +0000[diff] [blame]14838 "$O_NEXT_SRV -tls1_2 -split_send_frag 512 -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key" \
Minos Galanakisa37a9362025-03-06 15:09:39 +0000[diff] [blame]14839 "$P_CLI debug_level=3 renegotiation=1 request_page=/reneg" \
14840 0 \
Minos Galanakis135aed52025-03-11 17:00:45 +0000[diff] [blame]14841 -c "initial handshake fragment: 512, 0\\.\\.512 of [0-9]\\+" \
14842 -c "Prepare: waiting for more handshake fragments 512/" \
14843 -c "Consume: waiting for more handshake fragments 512/" \
Minos Galanakisa37a9362025-03-06 15:09:39 +0000[diff] [blame]14844 -c "client hello, adding renegotiation extension" \
14845 -c "found renegotiation extension" \
14846 -c "=> renegotiate"
14847
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14848requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14849requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
Minos Galanakis5c6d3172025-03-18 10:25:24 +0000[diff] [blame]14850run_test "Handshake defragmentation on client: len=256, server-initiated renegotiation" \
Minos Galanakis2a1eacc2025-03-11 17:24:04 +0000[diff] [blame]14851 "$O_NEXT_SRV -tls1_2 -split_send_frag 256 -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key" \
Minos Galanakisbde759b2025-03-13 11:43:53 +0000[diff] [blame]14852 "$P_CLI debug_level=3 renegotiation=1 renego_delay=-1 request_page=/reneg" \
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14853 0 \
Minos Galanakis135aed52025-03-11 17:00:45 +0000[diff] [blame]14854 -c "initial handshake fragment: 256, 0\\.\\.256 of [0-9]\\+" \
14855 -c "Prepare: waiting for more handshake fragments 256/" \
14856 -c "Consume: waiting for more handshake fragments 256/" \
Minos Galanakis9d1aa082025-03-11 14:17:25 +0000[diff] [blame]14857 -c "client hello, adding renegotiation extension" \
14858 -c "found renegotiation extension" \
14859 -c "=> renegotiate"
14860
Minos Galanakis6c129c32025-03-18 10:31:37 +0000[diff] [blame]14861requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
14862requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
14863run_test "Handshake defragmentation on client: len=128, server-initiated renegotiation" \
14864 "$O_NEXT_SRV -tls1_2 -split_send_frag 128 -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key" \
14865 "$P_CLI debug_level=3 renegotiation=1 renego_delay=-1 request_page=/reneg" \
14866 0 \
14867 -c "initial handshake fragment: 128, 0\\.\\.128 of [0-9]\\+" \
14868 -c "Prepare: waiting for more handshake fragments 128/" \
14869 -c "Consume: waiting for more handshake fragments 128/" \
14870 -c "client hello, adding renegotiation extension" \
14871 -c "found renegotiation extension" \
14872 -c "=> renegotiate"
14873
14874requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
14875requires_config_enabled MBEDTLS_SSL_RENEGOTIATION
14876run_test "Handshake defragmentation on client: len=4, server-initiated renegotiation" \
14877 "$O_NEXT_SRV -tls1_2 -split_send_frag 4 -cert $DATA_FILES_PATH/server5.crt -key $DATA_FILES_PATH/server5.key" \
14878 "$P_CLI debug_level=3 renegotiation=1 renego_delay=-1 request_page=/reneg" \
14879 0 \
14880 -c "initial handshake fragment: 4, 0\\.\\.4 of [0-9]\\+" \
14881 -c "Prepare: waiting for more handshake fragments 4/" \
14882 -c "Consume: waiting for more handshake fragments 4/" \
14883 -c "client hello, adding renegotiation extension" \
14884 -c "found renegotiation extension" \
14885 -c "=> renegotiate"
14886
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]14887# Test heap memory usage after handshake
Jerry Yuab082902021-12-23 18:02:22 +0800[diff] [blame]14888requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]14889requires_config_enabled MBEDTLS_MEMORY_DEBUG
14890requires_config_enabled MBEDTLS_MEMORY_BUFFER_ALLOC_C
14891requires_config_enabled MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
Yuto Takanobc87b1d2021-07-08 15:56:33 +0100[diff] [blame]14892requires_max_content_len 16384
Wenxing Hou848bccf2024-06-19 11:04:13 +0800[diff] [blame]14893run_tests_memory_after_handshake
Piotr Nowicki0937ed22019-11-26 16:32:40 +0100[diff] [blame]14894
Tomás González24552ff2023-08-17 15:10:03 +0100[diff] [blame]14895if [ "$LIST_TESTS" -eq 0 ]; then
Manuel Pégourié-Gonnard8520dac2014-02-21 12:12:23 +0100[diff] [blame]14896
Tomás González24552ff2023-08-17 15:10:03 +0100[diff] [blame]14897 # Final report
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]14898
Tomás González24552ff2023-08-17 15:10:03 +0100[diff] [blame]14899 echo "------------------------------------------------------------------------"
14900
14901 if [ $FAILS = 0 ]; then
14902 printf "PASSED"
14903 else
14904 printf "FAILED"
14905 fi
14906 PASSES=$(( $TESTS - $FAILS ))
14907 echo " ($PASSES / $TESTS tests ($SKIPS skipped))"
14908
Gilles Peskinec75048c2024-05-17 11:55:15 +0200[diff] [blame]14909 if [ $((TESTS - SKIPS)) -lt $MIN_TESTS ]; then
14910 cat <<EOF
14911Error: Expected to run at least $MIN_TESTS, but only ran $((TESTS - SKIPS)).
14912Maybe a bad filter ('$FILTER') or a bad configuration?
14913EOF
14914 if [ $FAILS -eq 0 ]; then
14915 FAILS=1
14916 fi
14917 fi
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]14918fi
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]14919
Tom Cosgrovefc0e79e2023-01-13 12:13:41 +0000[diff] [blame]14920if [ $FAILS -gt 255 ]; then
14921 # Clamp at 255 as caller gets exit code & 0xFF
14922 # (so 256 would be 0, or success, etc)
14923 FAILS=255
14924fi
Manuel Pégourié-Gonnard33a752e2014-02-21 09:47:37 +0100[diff] [blame]14925exit $FAILS